A single PR just hijacked the NPM registry...
Npm Supply chain attack Javascript security Tanstack Node.js Open source security Package security Hacking Cybersecurity Software vulnerability
This video breaks down the sophisticated supply chain attack that compromised the Tanstack NPM package, explaining the attack vector and techniques used. It provides practical guidance for JavaScript and Node.js developers on how to protect their projects from similar dependency hijacking attempts.
Related videos
It just keeps getting worse
Why does this keep happening?
this is crazy.
Github’s Wildest Hack Yet
what the hell is even happening
HUGE password manager got compromised
They're hacking PDFs now
What Mythos Means for Software Security | TheStandup
Stop Updating Your Software (No, Seriously)
Axios just got f**ked
No, Seriously. AI is REALLY Good at Hacking Now
