PHILADELPHIA (WPVI) -- A growing number of retailers are offering consumers a new option when they check out online: order protection, sometimes called package protection. So, what does it cover, and ...

Send a note to Doug Wintemute, Kara Coleman Fields and our other editors. We read every email. By submitting this form, you agree to allow us to collect, store, and potentially publish your provided ...

Have you ever received an unexpected package in the mail? It may not be a gift – you could be the victim of a brushing scam, according to the United States Postal Inspection Service. A brushing scam ...

The business of delivering packages has gotten more complex amid the latest wave of tariffs, and in some cases, shipping companies such as UPS wind up simply trashing some packages. Shipments may be ...

Thousands of U.S.-bound packages shipped by UPS are trapped at hubs across the country, unable to clear the maze of new customs requirements imposed by the Trump administration. As packages flagged ...

Malware Injected Into Code Packages That Get 2 Billion+ Downloads Each Week Your email has been sent An attack targeting the Node.js ecosystem was just identified ...

A phishing email was at the heart of the attack. NPM team quickly removed backdoored versions. 18 packages hit, with 2B+ downloads every week. A new digital supply chain attack has targeted popular ...

Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to be the world’s biggest supply-chain attack ever. “Sorry everyone, I should ...

Malware hidden in widely used libraries like chalk and debug hijacked crypto transactions via browser APIs, exposing deep flaws in the open-source trust model. A massive supply chain attack ...

Aikido Security Ltd. today disclosed what is being described as the largest npm supply chain compromise to date, after attackers injected malware into 18 popular packages that together account for ...