The Hacker News

n8n Supply Chain Attack Abuses Community Nodes to Steal OAuth Tokens

Malicious npm packages posing as n8n community nodes were used to steal OAuth tokens by abusing trusted workflow integrations ...

Thousands of n8n instances under threat from top security issue

Despite being patched weeks ago, Ni8mare is still plaguing almost 60,000 instances, new data claims.

Max severity Ni8mare flaw lets hackers hijack n8n servers

A maximum severity vulnerability dubbed "Ni8mare" allows remote, unauthenticated attackers to take control over locally deployed instances of the N8N workflow automation platform.

Critical vulnerability found in n8n workflow automation platform

The open-source platform is widely used across enterprise environments, leaving thousands of instances at risk.

Max severity Ni8mare flaw impacts nearly 60,000 n8n instances

Nearly 60,000 n8n instances exposed online remain unpatched against a maximum-severity vulnerability dubbed "Ni8mare." ...
CSO Online

Malicious npm packages target the n8n automation platform in a supply chain attack

Researchers discovered malicious npm packages posing as n8n integrations, exfiltrating OAuth tokens and API keys from ...

Build Reliable n8n Assistants with Clear States, Validation & Escalation Paths

Learn two ways to manage workflow state on n8n, from canvas logic to tables that validate order numbers, for consistent ...