CSO Online

PhantomRaven returns to npm with 88 bad packages

Researchers at Endor Labs uncovered 88 new packages tied to new waves of the campaign, which uses remote dynamic dependencies to deliver credential-stealing malware.
Visual Studio Magazine

Hands On with VS Code 1.111 Autopilot (Preview) for AI Prompts

VS Code 1.111 Autopilot is not just a no-prompts mode. In testing, it handled a blocking question that still stopped Bypass.

New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
TechCrunch

Spotify says its best developers haven’t written a line of code since December, thanks to AI

Has AI coding reached a tipping point? That seems to be the case for Spotify at least, which shared this week during its fourth-quarter earnings call that the best developers at the company “have not ...
Benzinga.com

Sanofi Found In Breach Of UK Pharmaceutical Marketing Code Over Beyfortus Claims

Sanofi SA (NASDAQ: SNY) has been found to have violated the U.K.'s pharmaceutical marketing code after a senior executive made misleading claims in an October 2024 interview, prompting a complaint ...
abc7NY

Dangerous cold: 13 found dead outside in New York City this week

NEW YORK CITY (WABC) -- As temperatures plummeted last weekend, perilous cold conditions led local officials to warn New Yorkers of the dangers of prolonged exposure to severe winter weather. This ...
abc7NY

Dozens of code violations found inside Spring Valley home where 6-month-old baby died

SPRING VALLEY, Rockland County (WABC) -- A child's tragic death in Spring Valley has led Rockland County officials to fine a homeowner several thousand dollars. Once inside the home, inspectors found ...
GitHub

[email protected] on npm missing dependency 'undici' (ERR_MODULE_NOT_FOUND)

Repro (Linux, Node v22.20.0, npm 10.9.3):\n\n1) npm i -g [email protected]\n2) clawdhub search "calendar"\n\nResult:\n\nError [ERR_MODULE_NOT_FOUND]: Cannot find package ...
Hosted on MSN

Parents who found the cheat codes

Raising kids is hard until you see these ideas. These parents figured out smart solutions that actually work. Once you see them, you’ll wonder why you never thought of it. SNL mocks Kristi Noem's ...
The Escapist

Code Violet review: A dino crisis, and not in a good way

Survival horror and action horror are often associated with zombies; if you pick up a game from either niche, chances are that you’ll be tackling hordes of the undead, either with a steel pipe or a ...