Massive npm Hack Shows How One Phishing Email Shook the Open-Source World
The npm Hack: How a Single Phishing Email Put Billions of Downloads at Risk If you think the biggest cybersecurity threats come from ultra-sophisticated exploits, think again. Sometimes, all it takes is one carefully crafted phishing email. That’s exactly what happened in early September 2025, when a hacker tricked a respected open-source maintainer into giving…