NPM Registry

News and updates related to security incidents and vulnerabilities affecting the Node Package Manager (NPM) registry.

Cyber News & Updates

IndonesianFoods-worm Floods NPM Registry

A sophisticated self-replicating ‘IndonesianFoods-worm’ has flooded the npm registry with tens of thousands of malicious packages. This aggressive campaign, documented by SourceCodeRed and JFrog, poses a significant threat to the…
Read more →

Lara De Jong

·

Nov 17, 2025

·

2–3 minutes