Security News Hackers hijack npm packages with 2 billion weekly downloads in supply chain attack BleepingComputer Daniel Bender Sep 8, 2025 In what is being called the largest supply chain attack in history, attackers have injected malware into NPM packages with over 2.6 billion weekly downloads after compromising maintainers' accounts in a phishing attack.
