1. TanStack and 160+ npm/PyPI Packages Hit in Self-Spreading Supply Chain Worm Attack
A sophisticated supply chain attack has compromised TanStack and over 160 packages across the npm and PyPI ecosystems, security researchers at Orca Security report. The attack, characterized as a self-propagating worm, represents a significant escalation in software supply chain threats, targeting widely-used developer...