Shai Hulud malware turns developers into unwitting distributors in NPM supply chain attacks

Shai Hulud is a malware campaign first observed in September targeting the JavaScript ecosystem that focuses on supply chain ...
Cybernews

Code that works can also be malware: this WhatsApp API is stealing messages

A malicious npm WhatsApp library with 56,000 downloads secretly stole messages, credentials, and contacts in a sophisticated ...
New Scientist

How lab-grown lichen could help us to build habitations on Mars

Scientists cultivating partnerships of fungi and algae believe their invention has far-out implications for how we create the ...
SecurityWeek

NPM Package With 56,000 Downloads Steals WhatsApp Credentials, Data

The lotusbail NPM package steals WhatsApp credentials, messages, and contacts, and provides persistent access to the victims’ accounts.

Your AI browser can be hijacked by prompt injection, OpenAI just patched Atlas

OpenAI says it has patched ChatGPT Atlas after internal red teaming found new prompt injection attacks that can hijack AI ...
Ecommerce Fastlane

How To Build Scalable UI Components For Enterprise Apps

Scalability begins with an organized design mindset, and Atomic design is an ideal approach for this. To clarify, Atomic ...

Infragistics Makes Ignite UI Open Source

Developers Now Have Access to 50+ Enterprise-Grade Open Source Components Across Angular, Blazor, React and Web Components ...
Security Boulevard

Why Modern SaaS Platforms Are Switching to Passwordless Authentication

Learn why modern SaaS platforms are adopting passwordless authentication to improve security, user experience, and reduce breach risks.
Visual Studio Magazine

Microsoft Tests Copilot-Powered Tool to Modernize JavaScript/TypeScript in VS Code

Microsoft previews a GitHub Copilot-powered VS Code Insiders tool that modernizes JavaScript/TypeScript apps by upgrading npm ...
The Hacker News

North Korea-linked Actors Exploit React2Shell to Deploy New EtherRAT Malware

North Korea-linked attackers exploit CVE-2025-55182 to deploy EtherRAT, a smart-contract-based RAT with multi-stage ...
CPO Magazine

North Korean Hackers Target Developers with Nearly 200 Malicious NPM Packages in “Contagious Interview” Hacking Campaign

North Korean hackers intensify their efforts against blockchain and Web3 developers, using nearly 200 malicious npm packages in the ongoing Contagious Interview hacking campaign.