Bleeping Computer

Backdoor in Popular JavaScript Library Set to Steal Cryptocurrency

A JavaScript library that scores over two million downloads every week has been injected with malicious code for stealing coins from a cryptocurrency wallet. The affected package is Event-Stream, ...

Popular JavaScript library can be hacked allowing access to user accounts

Node-forge cryptography library flaw (CVE-2025-12816) allowed bypass of signature and certificate validation CERT-CC warns of ...
InfoWorld

3 JavaScript libraries to replace jQuery

Ubiquitous jQuery has been outmoded by JavaScript and browser advances. These jQuery-like alternatives pick up where jQuery left off Simplifying tasks such as HTML document traversal, animation, and ...
CoinTelegraph

Crypto users urged to take extreme care as NPM attack hits core JavaScript libraries

The breach hit core JavaScript libraries such as chalk and strip-ansi, downloaded billions of times each week, raising alarms over the security of open-source software. Hackers have compromised widely ...
The Next Web

This simple JavaScript library makes it easy to add keyboard shortcuts to your Web app

For all the Web developers and designers out there, you’ll know that working with keyboard events isn’t a simple feat. So if you’ve ever desired to build shortcuts into your Web app, there’s a new and ...
ZDNet

An insecure mess: How flawed JavaScript is turning web into a hacker's playground

An analysis of over 133,000 websites has found that 37 percent of them have at least one JavaScript library with a known vulnerability. Researchers from Northeastern University have followed up on ...