Krebs on Security

Self-Replicating Worm Hits 180+ Software Packages

The novel malware strain is being dubbed Shai-Hulud — after the name for the giant sandworms in Frank Herbert’s Dune novel ...
SecurityWeek

Shai-Hulud Supply Chain Attack: Worm Used to Steal Secrets, 180+ NPM Packages Hit

Shai-Hulud is the third major supply chain attack targeting the NPM ecosystem after the s1ngularity attack and the recent ...
The Hacker News

Self-Replicating Worm Hits 180+ npm Packages to Steal Credentials in Latest Supply Chain Attack

"Each published package becomes a new distribution vector: as soon as someone installs it, the worm executes, replicates, and ...
InfoWorld

Python has overtaken JavaScript on GitHub

Python has overtaken JavaScript as the most popular language on GitHub, while the use of Jupyter Notebooks also has skyrocketed on the site. The rise of both underscore the surge in data science, ...
SD Times

GitHub acquires JavaScript package manager provider npm

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...
TechCrunch

GitHub nabs JavaScript packaging vendor npm

GitHub, the developer repository owned by Microsoft, made a little deal of its own this morning when it bought JavaScript packaging vendor npm for an undisclosed amount. As GitHub CEO Nat Friedman ...
InfoQ

Refactoring GitHub OctoKit JavaScript REST SDK for Maintainability and Modularization

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Ludovic Henry explains how RISC-V's open ...
IT World Canada

Github acquires npm to aid JavaScript developers

The Microsoft-owned Github this week announced that is has acquired npm, a company with a large registry of JavaScript packages. Nat Friedman, Github’s chief executive officer, who made the ...