Massive Supply Chain Attack Hijacks ctrl/tinycolor With 2 Million Downloads and Other 40 NPM Packages

September 16, 2025

A sophisticated and widespread supply chain attack has struck the NPM ecosystem, compromising the popular @ctrl/tinycolor package, which is downloaded over 2 million times per week.

BladeOne

Anthropic’s Mythos signals a structural cybersecurity shift

ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers

CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software

Mythos and the cyber security risk facing all states

Hackers Distribute ClipBanker Malware via Fake Proxifier Installer On GitHub

Fake Proxifier GitHub Installer Spreads ClipBanker Crypto Malware

Security Bite Podcast: Atomic Stealer is blurring the line between infostealers and trojans on Mac

Nearly half of March ransomware attacks in tied to just 3 groups

Cyberattacks, Tariffs, Geopolitics Loom Over Business Executives

Stock Market Today: Dow, S&P 500, Nasdaq Set to Open Down; Trump Hormuz Blockage Drives Up Oil Prices; Palantir, Nvidia, Goldman Sachs, More Movers

Sterling today: Pound slips as dollar firms on geopolitical tensions

AI supercycle reshapes global tech landscape, but rising memory constraints and geopolitical risks cloud outlook, says analysts

Six wealth management awards spotlight Noah’s China-to-global reach

The renewable energy shift is accelerating. And it is reshaping global markets

Listings pipeline and other Ethiopian market news – African Capital Markets News

Ondo Global Markets Asks SEC for Clarity on Tokenization

America has a ‘big AI problem’ and it starts with ‘angry’ Gen Z; shows Stanford survey

Letters to the editor: Electric vehicle technology should be embraced

Rostec has successfully tested drone swarm technology

Sony confirms Bloodborne animated movie; says film will be “very true” to gory spirit of the game

Why “India Being Inconsequential In The Global Conflict” Is In Its Best Interest

The World Agreed to Stop Using Food as a Weapon. It Hasn’t. | Council on Foreign Relations

Romanian Bishop urges hope amid global conflicts in Easter message: We must not lose hope! God is watching over us!

Follow TheCable for updates, highlights from 2026 IMF/World Bank spring meetings

Massive Supply Chain Attack Hijacks ctrl/tinycolor With 2 Million Downloads and Other 40 NPM Packages

Keys Under the Mat: Recovering Credentials from the Windows Registry

Six wealth management awards spotlight Noah’s China-to-global reach

America has a ‘big AI problem’ and it starts with ‘angry’ Gen Z; shows Stanford survey

The renewable energy shift is accelerating. And it is reshaping global markets