Crypto Security Report: September 2025
An npm supply chain attack with 2 billion weekly downloads exposed, deepfake voice phishing hitting crypto execs, the Trillion Dollar Security initiative, and more.
Read the full articleYou might also wanna read
npm Supply Chain Attack: Multiple Popular Packages Hijacked (1B+ Weekly Downloads)
Complete analysis of sophisticated crypto wallet drainer found in 21 npm packages with over one billion weekly downloads. Includes detailed
safedep.io·10mo ago

September 2025 NPM supply-chain attack compromises popular JavaScript packages
In September 2025, the JavaScript ecosystem faced one of its most disruptive security events to date: a coordinated software supply-chain at
projectptixiakis.github.io·1mo ago
Injective npm supply chain attack leaks crypto wallet keys
ON July 8, 2026, a supply chain attack targeted the Injective blockchain's npm packages, compromising a trusted developer's account to injec
cybersixt.com·2d ago
Shai-Hulud 2.0 npm Supply Chain Attack Technical Analysis
Critical npm supply chain attack compromises zapier-sdk, @asyncapi, posthog, and @postman packages with self-replicating malware. Technical
safedep.io·7mo ago

Comments
Sign in to join the conversation.
No comments yet. Be the first.