New malware campaign uses typo-squatting and fake developer packages to spread threats across Windows and Linux.

All malicious npm packages carried identical payloads for snooping sensitive network information from developers’ systems.

Socket's threat researchers have uncovered a package lurking in npm for six years that awaits a remote command to wipe ...

VS Code extensions deployed sandbox-evasive malware to steal system data, developer credentials, and crypto wallets.

Cybersecurity researchers Socket have warned of multiple malicious packages hosted on NPM, stealing sensitive user data and ...

The npm registry is once again in the spotlight, this time battling a malware campaign using malicious packages to map ...

A hacking campaign is spreading malicious reconnaissance scripts already downloaded more than 3,000 times from the JavaScript ...

Security firm Socket warns flags a campaign targeting NPM users with tens of malicious packages that can hijack system information.

The risks associated with leveraging open source libraries, and the review needed, are increasing. In the first half of 2025, ...

Security experts at Socket’s Threat Research team, have discovered a campaign in the NPM ecosystem, which includes Malicious ...