MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
npm
Recherche

Nx NPM packages poisoned in AI-assisted supply chain attack

mercredi 27 août 2025, 19:34 , par TheRegister
Stolen dev credentials posted to GitHub as attackers abuse CLI tools for recon
Nx is the latest target of a software supply chain attack in the NPM ecosystem, with multiple malicious versions being uploaded to the NPM registry on Tuesday evening.…
Lire la suite sur TheRegister
https://go.theregister.com/feed/www.theregister.com/2025/08/27/nx_npm_supply_chain_attack/

Voir aussi

npm The Duty-Free Loophole Is Closing. What That Means for You—and Your Packages Wired: Tech.28 Aug
attack Wave of npm supply chain attacks exposes thousands of enterprise developer credentials InfoWorld28 Aug
supply Google issued ‘State-backed attack in progress’ warnings after spotting web hijack scheme TheRegister27 Aug
chain "Always fight back": Canadian man punches cougar in face to escape attack BoingBoing27 Aug
ai-assisted ZipLine attack uses 'Contact Us' forms, White House butler pic to invade sensitive industries TheRegister26 Aug
poisoned How does AI affect cloud attack vectors? InfoWorld26 Aug
packages Farmers Insurance Data Breach Impacts 1.1 Million People After Salesforce Attack Slashdot26 Aug
npm Survey Finds More Python Developers Like PostgreSQL, AI Coding Agents - and Rust for Packages Slashdot25 Aug
attack Arch Linux Faces 'Ongoing' DDoS Attack Slashdot23 Aug
supply Arch Linux takes a pounding as DDoS attack enters week two TheRegister22 Aug
chain People who get shingles within a year of Covid have doubled reinfection risk and 67 % higher heart attack odds BoingBoing21 Aug
ai-assisted Employee distraction is a bigger risk than attack sophistication BetaNews21 Aug
poisoned Oregon Man Accused of Operating One of Most Powerful Attack 'Botnets' Ever Seen Slashdot21 Aug
packages Telco giant Colt suffers attack, takes systems offline TheRegister15 Aug
npm Microsoft is Trying To Poach Meta AI Talent and Offering Multimillion-Dollar Pay Packages Slashdot12 Aug
attack Poisoned telemetry can turn AIOps into AI Oops, researchers show TheRegister12 Aug
supply UK retail giant M&S restores Click & Collect months after cyber attack, some services still down TheRegister11 Aug
chain Rust's Annual Tech Report: Trusted Publishing for Packages and a C++/Rust Interop Strategy Slashdot10 Aug
ai-assisted Salesforce attack exposed Google Ads customer data BetaNews10 Aug
poisoned Dead Kennedys logo creator Winston Smith recovering from heart attack, please help BoingBoing 8 Aug
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Date Actuelle
ven. 29 août - 10:39 CEST