AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.

Germany-returned techies asked to write code on notepad during Indian job interviews

Two experienced software developers faced outdated hiring practices as they were asked to code on notepad during interviews.

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

Claude Code 2 Automation Expands with Loops, Schedules, and 100+ Workflows

New Claude Code features inlcude /loop a short-term automation with a three-day expiry; tasks stop when the session closes, ...

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible ...