Ongoing typosquatting campaign impersonates hundreds of popular npm packages Puppeteer or Pupeter? One of them will snoop around on your machine and steal your credentials Research05 Nov 2024 | 11
Hijacked S3 buckets used in attacks on npm packages Cybercrooks use abandoned AWS storage tool to deliver malware Storage19 Jun 2023 | 7
Criminals use trending TikTok challenge to make data-stealing malware invisible PSA: Don't download unknown apps even if they promise naked people Security29 Nov 2022 | 7
WASP malware stings Python developers Info-stealing trojan hides in malicious PyPI packages on GitHub Research16 Nov 2022 | 9