A sophisticated supply chain attack targeting JavaScript developers emerged on Friday, July 18th, 2025, when cybercriminals compromised multiple popular npm packages to distribute the newly identified “Scavenger” malware. The attack primarily focused on eslint-config-prettier, a widely-used code formatting package, along with several other development tools including eslint-plugin-prettier, snyckit, @pkgr/core, and napi-postinstall. The compromise was discovered […]
The post Scavenger Malware Hijacks Popular npm Packages to Attack Developers appeared first on Cyber Security News.
This article has been indexed from Cyber Security News