Thousands of Malicious npm Packages Threaten Web Apps | Threatpost
Attacks on Software Supply Chains To Increase in Severity in 2023: Report - Spiceworks
How To Protect Your Company From This npm Supply Chain Attack - The Sec Master
Malicious NPM Packages Target German Companies in Supply Chain Attack
JSconf JP - Analysis of an exploited npm package. Event-stream's role in a supply chain attack
Data study reveals predictors of supply chain attacks in NPM repositories | The Daily Swig
The Supply Chain Attack of UAParser.js npm Package - Truesec
Popular npm Project Used by Millions Hijacked in Supply-Chain Attack
npm Supply Chain Attack Targeting Germany-Based Companies
Large-scale supply chain attack used 218 malicious NPM packages
NPM supply-chain attack impacts hundreds of websites and apps
Silicon Angle: Supply chain attack uses malicious NPM packages to steal data
Malicious Packages in npm Targeting Azure Developers
A new type of supply-chain attack with serious consequences is flourishing | Ars Technica
No Unaccompanied Miners: Supply Chain Compromises Through Node.js Packages | Mandiant
Popular npm Project Used by Millions Hijacked in Supply-Chain Attack
Preventing the Next Package Manager Supply Chain Attack - Garantir
Supply Chain Attack: NPM Library Used By Facebook And Others Was Compromised | Hackaday
GitHub supply chain attack cloned thousands of projects to trap unwary
NPM dependencies, supply chain attacks, and Bitcoin wallets | Synopsys
NPM security: preventing supply chain attacks | Snyk
A Large-Scale Supply Chain Attack Distributed Over 800 Malicious NPM Packages
New npm timing attack could lead to supply chain attacks
npm Supply Chain Attack Targeting Germany-Based Companies
How to avoid NPM supply chain attacks. | by michael sorensen | ITNEXT
Dependency Confusion: How I Hacked Into Apple, Microsoft and Dozens of Other Companies | by Alex Birsan | Medium
