Latest News
LMG bets on Slack as an enterprise platform
ASD draws a hard line on developers lacking security skills
NAB taps Databricks' Genie AI tools to derive more value from its data
Toll Group modernises network to bypass data centres
G7 leaders vow closer ties on AI
LOG IN
SUBSCRIBE
NEWS
GOVERNMENT
SECURITY
AI
DIGITAL NATION
REPORTS
RESOURCES
PODCAST
EVENTS
ADVERTISE
Search
BUSINESS
CLOUD
DATA CENTRE
EDUCATION
FINANCIAL SERVICES
HARDWARE
HEALTHCARE
INDUSTRIAL
NETWORKING
PROJECTS
SOFTWARE
STORAGE
STRATEGY
TECHNOLOGY
TELCO/ISP
HR
MARKETING
FINANCE
LEADERSHIP
GOVERNANCE
EMERGING TECH
State of Security
Cloud Covered
State of Security 2026
STATE OF SECURITY 2025
State of HR Tech
State of AI 2024
Special Reports
Focal Points
MEDIA HUB
PARTNER CONTENT
PARTNER HUBS
RESEARCH
Tech Partner Views
iTnews TV
Security Breakfast
Data & AI Breakfast
NEWS
BUSINESS
CLOUD
DATA CENTRE
EDUCATION
FINANCIAL SERVICES
HARDWARE
HEALTHCARE
INDUSTRIAL
NETWORKING
PROJECTS
SOFTWARE
STORAGE
STRATEGY
TECHNOLOGY
TELCO/ISP
GOVERNMENT
SECURITY
AI
DIGITAL NATION
HR
MARKETING
FINANCE
LEADERSHIP
GOVERNANCE
EMERGING TECH
REPORTS
State of Security
Cloud Covered
RESOURCES
State of Security 2026
STATE OF SECURITY 2025
State of HR Tech
State of AI 2024
Special Reports
Focal Points
MEDIA HUB
PARTNER CONTENT
PARTNER HUBS
RESEARCH
Tech Partner Views
iTnews TV
PODCAST
EVENTS
Security Breakfast
Data & AI Breakfast
ADVERTISE
Log In
Email:
Password:
Remember me
|
Forgot password?
Don't have an account? Register now!
Home
NPM
NPM
'Miasma' worm infests Red Hat npm packages
Trusted publishing defence mechanism side-stepped with compromised token.
Juha Saarinen
Jun 2 2026 1:23PM
Security
CrowdStrike, Google slay 'unkillable' Glassworm botnet targeting devs
Simultaneous strike severed operators from infected machines.
Juha Saarinen
May 27 2026 12:56PM
Security
Supply chain attack hits 100 million-download Axios npm package
Huge blast radius as popular package is compromised with RAT.
Juha Saarinen
Mar 31 2026 5:00PM
Security
"CanisterWorm" supply chain malware attacks npm
Rickrolling worm uses blockchain for command and control.
Juha Saarinen
Mar 23 2026 4:39AM
Security
GitHub acts on npm security after Shai-Hulud worm attack
Enhanced trusted publishing to limit ongoing supply chain attacks.
Juha Saarinen
Sep 29 2025 2:34PM
Security
Phishing attack nets enormous npm supply chain compromise
Developers targeted in new hacking campaign.
Juha Saarinen
Sep 9 2025 12:54PM
Security
Malware once again a headache for npm
Fortiguard finds data-thieving packages.
Richard Chirgwin
Oct 4 2023 11:05AM
Security
npm packages found hosting TurkoRat malware
Typo-squatting attacks re-emerge.
Richard Chirgwin
May 22 2023 11:55AM
Security
Malware floods npm and PyPi registries in supply-chain attacks
Over 200 packages try to drop cryptominers.
Juha Saarinen
Aug 22 2022 5:06AM
Security
'Protestware' npm package dependency labelled supply-chain attack
"Peacenotwar" npm module protests Russian invasion of Ukraine.
Juha Saarinen
Mar 17 2022 11:52AM
Security
Former SAP chief says 400k German jobs at risk from electric cars
Fewer parts, less maintenance.
Staff Writer
Jan 14 2020 12:30PM
Benchmarking Change
Unknown dev gets rights to popular module, adds crypto stealer
'Everything wrong with open source software security'.
Juha Saarinen
Nov 27 2018 11:41AM
Security
Most popular tech stories
Bunnings to sell through Google AI Mode
Treasury Wine Estates to go big on digital, data and AI
ABC drops Salesforce for Braze
Chemist Warehouse's AI tool for HR becoming a "standard pattern"
Virgin Australia, Wesfarmers strike OpenAI agreements
HamiltonJet partners with digital services provider Fortude
SentinelOne signs distribution agreement with Sektor
Rapid7’s new SIEM combines exposure management with threat detection
The techpartner.news podcast, episode 3: Why security consultancy founder Kat McCrabb started with the hard stuff
Bluechip Infotech enters final stage of Goodson Imports acquisition
Blackberry celebrates "giant step forward"
'Touch-free' smartphone controlled with head movements
Photos: Australian industry explores data for net zero
Telstra Purple acquires IoT specialists Alliance Automation, Aqura Technologies
Govt launches consumer tech label program for smart devices
Log In
Don't have an account? Register now!
Email:
Password:
Remember me
|
Forgot your password?
