Responding to recent NPM malware attacks, Chainguard Libraries for JavaScript seeks to address security vulnerabilities in the JavaScript ecosystem.

Keep an eye on the future but hone your coding craft in the now. Start here, with nine timeless JavaScript coding concepts, a look at Nitro.js—fast becoming the go-to server option for JavaScript and ...

Confucius hackers target Pakistan with WooperStealer and Anondoor malware using phishing and DLL side-loading.

Confucius, a well-known hacking group, has launched a new phishing campaign targeting Pakistan. Security experts have linked this campaign to WooperStealer and Anondoor Malware in Pakistan, showing ...

Discover the types of malware in 2025, from backdoors to ransomware, and learn which families hackers use most in real-world attacks.

When you’re working on multiple projects, it’s easy to end up with a disorganized collection of config documents, binaries, and executable files. If you’re not careful with the packages, you’re just ...

Chainguard, a trusted foundation for software development and deployment, is launching Chainguard Libraries for JavaScript, a collection of trusted builds of thousands of common JavaScript ...

Scammers have been abusing unsecured cellular routers used in industrial settings to blast SMS-based phishing messages in campaigns that have been ongoing since 2023, researchers said.

Amatera Stealer, once launched, gathers system information, collects files matching a predefined list of extensions, and harvests data from Chromium- and Gecko-based browsers, as well as applications ...

A 21-year-old Patna college dropout, Ashwani Kumar, emerged as a central figure in India's movie piracy network. Using self-taught hacking skills, he ...

Socket Firewall Free builds upon the company's safe npm tool by extending scanning capabilities beyond the JavaScript/TypeScript ecosystem to Python and Rust. It integrates with the package management ...

The JavaScript development community faced one of its most sophisticated supply chain attacks in September, when a self-replicating worm infiltrated the npm registry and compromised more than 180 ...