Nuacht

The Hacker News1 lá

Malicious Nx Packages in 's1ngularity' Attack Leaked 2,349 GitHub, Cloud, and AI Credentials

Nx supply chain attack on Aug 26, 2025 leaked 2,349 secrets via npm packages, risking GitHub and cloud accounts.
The Register on MSN2 lá

Nx NPM packages poisoned in AI-assisted supply chain attack

Nx is the latest target of a software supply chain attack in the NPM ecosystem, with multiple malicious versions being ...

NPM packages from Nx targeted in latest worrying software supply chain attack

At the same time, security researchers Wiz released a separate announcement, saying the malicious versions were carrying infostealing malware, grabbing secrets such as GitHub and NPM tokens, SSH keys, ...
SecurityWeek1 lá

Hackers Target Popular Nx Build System in First AI-Weaponized Supply Chain Attack

The popular Nx build system, boasting 4 million downloads each week, was exploited in the first supply chain breach to use AI assistants.
TechRadarLíon na míonna: 1

North Korean hackers release malware-ridden packages into npm registry

North Korean hackers have been seen pushing dozens of malicious packages to npm in an attempt to compromise western technology products through supply chain attacks.