Bitwarden CLI npm package compromised to steal developer credentials

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.
scmp.com

How to take down a US F-35 over Iran? Chinese engineer’s prophetic tutorial goes viral

A striking phenomenon is emerging from China as the Middle East conflict presses on: technically skilled civilians are volunteering their expertise online to help Iran counter US military might, ...
Bleeping Computer

Latest Node.js news

Over the holidays, the npm package registry was flooded with more than 3,000 packages, including one called "everything," and others named a variation of the word. These 3,000+ packages make it ...