Miasma campaign poisons 20-plus npm packages, hunts for developer secrets

Microsoft says latest attack targets Leo Platform and RStreams packages, harvesting creds and going after more maintainers ...
MUO on MSN

I blamed npm for slow WSL builds — the real fix took five minutes

Moving one folder quadrupled my build speeds without touching a single config.
The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.
Infosecurity Magazine

Lookalike npm Package Hides a Multi-Stage Windows RAT

A malicious npm package has been caught impersonating one of the JavaScript ecosystem's most widely used build tools. The ...
Dark Reading

'Djinn' Stealer Targets Cloud, AI Credentials

The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.
Microsoft

Photo ZIP campaign targeting hospitality industry delivers Node.js implant for persistent access

Microsoft Threat Intelligence identified an active multi-stage intrusion campaign targeting hospitality organizations in ...

Beach Day API Launches Real-Time Beach and Ocean Data API for Developers

Beach Day API, a developer-first REST API powered by VersusMedia, today announced the launch of its real-time beach and ocean ...
The Hacker News

Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant

Microsoft says hotel phishing emails are using Calendly links and photo ZIP files to drop the TonRAT Node.js implant on front ...
The Caledonian-Record

Vivani Medical Receives Regulatory Approval for the Initiation of SLIM-1, a Phase 1 Clinical ...

Vivani Medical, Inc. (Nasdaq: VANI) (“Vivani” or the “Company”), a clinical-stage biopharmaceutical company developing ...

Exclusive: Chainguard extends Repository scanning and policies to Java, Python and containers

Secure software supply chain solution provider Chainguard Inc. today expanded its Chainguard Repository product with malware ...
The Caledonian-Record

Vivani Medical Announces Appointment of August J. Moretti to Board of Directors and Retirement ...

Vivani Medical, Inc. (NASDAQ: VANI) (“Vivani” or the “Company”), a clinical-stage biopharmaceutical company developing miniature, ultra long-acting drug implants, today announced the ...
Tech Times

Figma Config 2026: Code Layers Challenge Cursor as GPU Shaders Hit Paid Plans

Figma Config 2026 closed Thursday with Code Layers for GitHub-linked canvas editing, Figma Motion in open beta with CSS and ...