Invisible npm malware pulls a disappearing act – then nicks your tokens

The Register
Oct 30, 2025, 10:19 am94 pts
PhantomRaven slipped over a hundred credential-stealing packages into npm A new supply chain attack dubbed PhantomRaven has flooded the npm registry with malicious packages that steal credentials, tokens, and secrets during installation. The packages appear safe when first downloaded, making them particularly…

Read Article Share
Share Article
- email
- x.com
- facebook
- pocket
- reddit
- tumblr
- linkedin
- pinterest

Trending Today on Tech News Tube

Bending Spoons continues its spree of buying famous tech brands with the Eventbrite deal

TechRadar

Bending Spoons continues its spree of buying famous tech brands with the Eventbrite deal 128

Meta's Oversight Board wants to expand its powers in 2026

Engadget

Meta's Oversight Board wants to expand its powers in 2026 128

Samsung previews Exynos 2600, claims to match Apple and Qualcomm chips

Digitimes

Samsung previews Exynos 2600, claims to match Apple and Qualcomm chips 126

Moore Threads soars fivefold on STAR Market debut as US$1.07bn fuels AI chip drive

Digitimes

Moore Threads soars fivefold on STAR Market debut as US$1.07bn fuels AI chip drive 125

Microsoft denies reports of lower AI sales targets as customers resist new tools

TechRadar

Microsoft denies reports of lower AI sales targets as customers resist new tools 123

IT panel makers lock prices as memory prices surge

Digitimes

IT panel makers lock prices as memory prices surge 120

OpenAI turns the screws on chatbots to get them to confess mischief

The Register

OpenAI turns the screws on chatbots to get them to confess mischief 107

Google, Amazon, and xAI want to launch AI into space

TechRadar

Google, Amazon, and xAI want to launch AI into space 106

About Tech News Tube

Tech News Tube is a real time news feed of the latest technology news headlines.

Follow all of the top tech sites in one place, on the web or your mobile device.

Featured

Broadcom CEO visits South Korea as…

Broadcom CEO visits South Korea as Samsung HBM4 reportedly obtains Google TPU…

Taiwan pushes toward robotics-driven…

Taiwan pushes toward robotics-driven healthcare as Foxconn expands AI…

Hanwha Systems develops aerospace-grade…

Hanwha Systems develops aerospace-grade transceiver chips for South Korea's…

PixArt becomes first to receive space…

PixArt becomes first to receive space tech license from Taiwan Space Agency; two…

Nvidia boss Jensen Huang steers Trump,…

Nvidia boss Jensen Huang steers Trump, Congress against AI chip limits and…

Over 70 US banks and credit unions…

Over 70 US banks and credit unions affected by Marquis ransomware breach -…

Shingles Vaccine Doesn’t Just Lower…

Shingles Vaccine Doesn’t Just Lower Dementia Risk, It Could Also Help Treat It

EU Hits Meta With Antitrust Probe Over…

EU Hits Meta With Antitrust Probe Over Plans To Block AI Rivals From WhatsApp

Microsoft 'Mitigates' Windows LNK Flaw…

Microsoft 'Mitigates' Windows LNK Flaw Exploited As Zero-Day

Huge Trove of Nude Images Leaked by AI…

Huge Trove of Nude Images Leaked by AI Image Generator Startup's Exposed…