JavaScript’s low bar to entry has resulted in one of the richest programming language ecosystems in the world. This month’s report celebrates the bounty, while also highlighting a recent example of ...

On September 8, 2025, a single phishing email triggered one of npm’s most damaging supply chain attacks, compromising 18 ...

Qix is an open source maintainer account that was compromised by a phishing attack. This allowed attackers to infect 18 popular npm packages with malicious code. Together, these packages are ...

In a supply chain attack, attackers injected malware into NPM packages with over 2.6 billion weekly downloads after ...

Discover the best free and open-source alternatives to Notepad that offer powerful features for coders and programmers. From ...

Bulk Rename Utility is a lightweight, easy-to-use file renamer. Effortlessly rename multiple files or folders with flexible options—minimal memory use means it runs quietly in the background.

Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to ...

DiffusionData, a pioneer and leader in real-time data streaming, is releasing Diffusion 6.12, introducing enhancements that speed up development, optimize resource usage, and guarantee consistent, ...

ESET researchers have identified a new threat actor targeting Windows servers with a passive C++ backdoor and a malicious IIS ...

The boxing legend was found dead at his home.