npm supply chain attack - The Cyber Trove

CanisterWorm Spreads Through npm Accounts Stealing Tokens

Latest News

CanisterWorm Spreads Through npm Accounts Stealing Tokens

A new supply chain malware campaign called CanisterWorm is targeting the npm ecosystem by compromising publisher … CanisterWorm Spreads Through npm Accounts Stealing TokensRead more

by Rakesh•March 23, 2026March 23, 2026•0

Latest News

Sha1-Hulud Supply Chain Attack Resurfaces, Targets npm and GitHub

A massive resurgence of the Sha1-Hulud supply chain malware has struck the open-source ecosystem, compromising over … Sha1-Hulud Supply Chain Attack Resurfaces, Targets npm and GitHubRead more

by Rakesh•November 24, 2025November 24, 2025•0