Malicious node-ipc npm Packages Trigger New Supply Chain Security Alarm
Over Security - Cybersecurity news aggregator [Unofficial]
May 16, 2026
Malicious node-ipc npm package versions used tarballs and DNS TXT queries to steal credentials from developers and CI systems.
Discussion in the ATmosphere