Simply sign up to the EU business regulation myFT Digest -- delivered directly to your inbox. EU officials have agreed to limit the scope of the bloc’s contested supply chain law, vastly reducing the ...

What Happened in the Shai Hulud JavaScript Attack? A major JavaScript supply-chain attack has compromised more than 400 NPM packages — including at least 10 widely used across the crypto ecosystem — ...

Swiss telecommunications company Swisscom has replaced multiple spreadsheets with a single carbon management platform to track emissions across its supply chain. The system aggregates data from over 3 ...

Oct 24 (Reuters) - European rating agency Scope downgraded the United States' credit rating by a notch on Friday, citing sustained deterioration in public finances and a weakening of governance ...

Software supply chain security provider Chainguard has unveiled Chainguard Libraries for JavaScript, described as a collection of trusted builds of thousands of common malware-resistant JavaScript ...

Chainguard, a trusted foundation for software development and deployment, is launching Chainguard Libraries for JavaScript, a collection of trusted builds of thousands of common JavaScript ...

The notification arrived on September 14, 2025, at 17:58 UTC. Somewhere in the sprawling npm registry—home to 2.5 million JavaScript packages that power everything from banking apps to smart ...

The breach hit core JavaScript libraries such as chalk and strip-ansi, downloaded billions of times each week, raising alarms over the security of open-source software. Hackers have compromised widely ...

NPM developer qix's account compromise potentially puts user funds at risk by compromising library dependencies used by bitcoin wallets. A major NPM developer, qix, has had their account compromised.

At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved ...