Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
AI-powered malware hit 2,180 GitHub accounts in “s1ngularity” attack
Malware and Vulnerabilities
September 08, 2025
bleepingcomputer
An AI-powered supply chain attack, dubbed s1ngularity, has compromised 2,180 GitHub accounts and 7,200 repositories by exploiting the Nx open-source project. The attackers used a malicious NPM package to deploy credential-stealing malware.
Read More
S1ngularity Attack
NPM Package
Publisher
Previous
iCloud Calendar abused to send phishing emails from App ...
Threat Intel & Info Sharing
Next
VirusTotal finds hidden malware phishing campaign in SV ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/public_image/bleepingcomputera9c435d9-14bf-4d2b-8d4d-09f5c2491be2.jpg)
/https://cyware-ent.s3.amazonaws.com/public_image/bleepingcomputer7188b651-125c-4fdf-88c7-a5ce4e86ea56.jpg)
