APIs are about to think for themselves, shifting integration from rigid rules to smart, adaptive systems that learn what your ...

Hundreds of trojanized versions of well-known packages such as Zapier, ENS Domains, PostHog, and Postman have been planted in ...

Shai-Hulud malware infiltrates 490 NPM packages, stealing API keys and credentials from ENS and major crypto development ...

Approximately 640 NPM packages have been infected with a new variant of the Shai-Hulud self-replicating worm in a fresh wave of attacks.

A new iteration of the Shai-Hulud malware that ran through npm repositories in September is faster, more dangerous, and more destructive, creating huge numbers of malicious repositories, compromised ...

Bitdefender details fake Battlefield 6 pirated versions and fake game trainers found across torrent trackers and other easily ...

The attackers have learned from their mistakes and have now developed a more aggressive version of the worm. It has already ...

Essentially, the idea is that anyone — including you or me — can build applications by vibe coding with zero actual development knowledge or experience. To put Google's claims to the test, I tried to ...

The Shai-Hulud supply chain attack campaign, responsible for compromising hundreds of CrowdStrike’s NPM packages in September ...

Evalite is a TypeScript-native eval runner designed for AI applications, enabling developers to create reproducible evals ...

Google launched a new tool for developers to use multiple AI agents to accomplish different parts of coding simultaneously.

While the September 2025 Shai-Hulud attack focused primarily on credential harvesting and self-propagation, this new variant ...