Acumen Cyber

Fake npm 2FA reset email led to compromise of popular code packages

September 9, 2025

Malicious versions of at least 18 widely used npm packages were uploaded to the npm Registry on Monday, following the compromise of their maintainer’s account. …

Resources

Webinar: The BAS Summit 2025: Redefining Attack Simulation through AI
Download: Cyber defense guide for the financial sector
Webinar: Why AI and SaaS are now the same attack surface

Don't miss

10 data security companies to watch in 2026
Hard-coded credentials found in Moxa industrial security appliances, routers (CVE-2025-6950)
China-linked Salt Typhoon hackers attempt to infiltrate European telco
Most AI privacy research looks the wrong way
Why ex-military professionals are a good fit for cybersecurity

Acumen Cyber

Fake npm 2FA reset email led to compromise of popular code packages

Featured news

Resources

Don't miss