New Supply Chain Malware Operation Hits npm and PyPI Ecosystems, Targeting Millions Globally Supply chain attack infects 16 GlueStack npm packages used by 1M weekly users, enabling malware that steals data and controls systems.

#NPM: New Supply Chain #Malware Hits NPM and #PyPI Package Ecosystems. #ReactNative-Aria & #GlueStack packages with cumulative 1mln+ weekly downloads backdoored overnight - check your dependencies!
#SoftwareSupplyChainSecurity
👇
thehackernews.com/20...

New Supply Chain Malware Operation Hits npm and PyPI Ecosystems, Targeting Millions Globally Supply chain attack infects 16 GlueStack npm packages used by 1M weekly users, enabling malware that steals data and controls systems.

New Supply Chain Malware Operation Hits npm and #PyPI Ecosystems, Targeting Millions Globally🔥

#Cybersecurity researchers have flagged a #supply chain attack targeting over a dozen packages associated with #GlueStack to deliver #malware.

#mondayreport #news #tech

thehackernews.com/2025/06/new-...

Supply chain attack hits Gluestack NPM packages with 960K weekly downloads A significant supply chain attack hit NPM after 15 popular Gluestack packages with over 950,000 weekly downloads were compromised to include malicious code that acts as a remote access trojan (RAT).

Supply chain attack hits Gluestack NPM packages with 960K weekly downloads🔥

A supply chain attack hit #NPM after 15 popular #Gluestack packages with over 950,000 weekly downloads were compromised to include #malicious code as a remote access trojan (RAT)🐀

www.bleepingcomputer.com/news/securit...