Malicious npm Packages Used to Spy on Developer Networks May 23, 2025 The npm registry is under fire again after researchers at Socket uncovered a coordinated malware campaign targeting developer environments. At least 60 malicious packages from three suspicious npm accounts were found to contain identical host-fingerprinting scripts, designed to map internal developer networks. These packages have already been downloaded over 3,000 times. Rather than causing immediate harm, the malware gathers data like internal URLs and build paths, especially from CI servers, laying the groundwork for future supply chain attacks. The attackers used similar email addresses and a shared Discord webhook for exfiltrating data. The use of post-install scripts, a legitimate npm feature, enabled the malicious code to run unnoticed. Socket warns the campaign is still active, and expects attackers to create new throwaway accounts, reuse the script, and push more malicious packages unless npm takes action. Developers are urged to: Use dependency scanners to detect post-install hooks and suspicious code Be cautious with unfamiliar or small-sized packages Integrate automated security checks into their pipelines The message is clear: securing the software supply chain requires constant vigilance. Security August 12, 2025 U.S. Court System Breach Linked to Russian Hackers, Reports Say Security August 12, 2025 Rare Breach Exposes North Korean Cyber Operative’s Workstation Games March 17, 2025 Discord Launches Social SDK to Bring Its Features Directly Into Games Security March 26, 2025 Google Enhances Android and Play Store Security for Developers and Users Sign Up to Our Newsletter! Get the latest news in tech. Subscribe AI August 5, 2025 JetBrains Unveils Kineto, a No-Code AI App Builder for Everyone Games Jan 16, 2025 Apple Quietly Launches Game Porting Toolkit 2 to Push Mac Gaming Forward Coding July 14, 2025 Ada Rises Again: Legacy Language Cracks TIOBE Top 10 Amid Renewed Demand for Rel... Funding Aug 1, 2025 CRV Raises $750M to Focus on Seed and Series A Investments Read more Coding July 23, 2025 Python 3.14 Enters Final Countdown with First Release Candidate: Free-Threaded C... Coding July 16, 2025 Next.js 15.4 Is Here—With Big Things on the Horizon AI July 28, 2025 Coding in the Age of AI: A Shift in What It Means to Be a Developer Coding July 28, 2025 The Beautiful Mess That Made the Internet Work Home     Coding     Security     Apps     Games     Web     AI     Funding © 2025 Web Economics. All rights reserved. Sign Up to Our Newsletter! Subscribe