New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.

Business Brief: Software, hard times

The current flareup seems to be reaching an equilibrium, of sorts, as analysts and executives call fears of an SaaS-pocalypse overblown. (“Software as a service” is a cloud-based delivery model in ...
Cybernews

Who owns your Chrome extension? Researchers warn side projects are being turned into malware

Many Chrome extensions start as small developer projects, and once they gain users, are sold on. But what if the new owner turns out to be a bad actor who gains the ability to update software running ...

Meet The $9 Billion AI Company Reimagining Vibe Coding

Amjad Masad’s Replit allows users to work together like they’re doodling on a white board. It also made him a billionaire along the way.
InfoWorld

First look: Electrobun for TypeScript-powered desktop apps

Powered by the TypesScript-native runtime Bun, Electrobun improves Electron with a smaller application footprint and built-in update mechanisms.
InfoWorld

19 large language models redefining AI safety—and danger

Whether you are looking for an LLM with more safety guardrails or one completely without them, someone has probably built it.

Health Canada reviewing deaths of two people who donated plasma at private centres in Winnipeg

Two people in Winnipeg have died in recent months after donating blood plasma at collection centres run by Spanish pharmaceutical company Grifols, according to Health Canada. The federal regulator ...
News

How to get a job in global tech

The global technology industry has become one of the most dynamic and opportunity-rich job markets in the world. From software engineering and artificial intelligence to cybersecurity and digital ...