Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Popular npm linter packages hijacked via phishing to drop malware
Malware and Vulnerabilities
July 21, 2025
Bleepingcomputer
The npm package eslint-config-prettier, downloaded over 30 million times weekly, was compromised after its maintainer fell victim to a phishing attack. Four other packages from the same maintainer were also targeted.
Read More
JavaScript Libraries
Malware Dropper
Supply Chain Attack
Credential Theft
Eslint Config Prettier
Publisher
Previous
Threat actors downgrade FIDO2 MFA auth in PoisonSeed ph ...
Identity Theft, Fraud, Scams
Next
Update: Radiology Associates of Richmond data breach im ...
Breaches and Incidents
/https://cyware-ent.s3.amazonaws.com/public_image/bleepingcomputerc696765a-510f-4d23-9e24-81e37caeae29.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_604127141.jpg)
