Software Security

Counterfeit npm Libraries Used in Sophisticated Supply Chain Attack bot-apt

bot-apt

Counterfeit npm Libraries Used in Sophisticated Supply Chain Attack

Do Son April 22, 2025

Experts at Socket have uncovered a new software supply chain attack involving counterfeit npm libraries masquerading as...

AI Hallucinations Lead to “Slopsquatting” Malware Threat pac

pac

AI Hallucinations Lead to “Slopsquatting” Malware Threat

Do Son April 13, 2025

The era of AI-powered code generation tools has not only simplified the lives of developers but also...

Malicious npm Package Hijacks Cryptocurrency Wallets in Supply Chain Attack List of TH policies in package

List of TH policies in package

Malicious npm Package Hijacks Cryptocurrency Wallets in Supply Chain Attack

Do Son April 12, 2025

Software supply chain attacks are becoming increasingly sophisticated, with malicious actors disguising harmful code as legitimate libraries...