InfoQ

npmx Reaches Alpha: Community Driven Alternative Browser for the npm Registry

Daniel Roe and over 250 contributors. It emphasizes speed and features absent in the official npmjs.com interface, such as ...
The Caledonian-Record

Australia aims to tax tech giants unless they pay news outlets

Australia unveiled draft laws on Tuesday that would tax tech giants Meta, Google and TikTok unless they voluntarily strike ...

GlassWorm malware attacks return via 73 OpenVSX "sleeper" extensions

A new wave of the Glassworm campaign is targeting the OpenVSX ecosystem with 73 "sleeper" extensions that turn malicious ...

Sentinel in talks to make drones in Canada for Ukraine through joint venture, sources say

Hamilton company would use Ukrainian IP to manufacture UAVs as part of $6.5-billion military assistance commitment to country ...

Kanye West gig to go ahead in Portugal as concert boss defends ‘non issue’

At least one Kanye West show in Europe will go ahead this summer after a string of cancellations, sparked by his recent ...
Pocket Tactics

Universal Tower Defense codes April 2026

April 26, 2026: We added one new [🪲CELL🪲] Universal Tower Defense code, offering rerolls and gems. You can check what codes are active and expired below. While anime fighters and thrilling racers ...

How to fight back against superbugs, according to an antibiotic expert

Readers asked Dr. Gerry Wright about how his lab operates, how citizens can help with research and the difficulties of ...
SecurityWeek

Bitwarden NPM Package Hit in Supply Chain Attack

The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.

Bitwarden CLI npm package compromised to steal developer credentials

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.
Security Boulevard

AI Vulnerability Chaining – Why Your Security Stack Cannot Detect What Comes Next

Mythos combined four separate low-severity bugs into a complete browser sandbox escape. Traditional scanners evaluate ...

Trump is as dangerous as ever – our nightmare is far from finished

It’s a pattern that is now tediously familiar. Trump blustered, puffed his chest, then backed down and moved on.
Security Boulevard

Vercel Breach: How a Roblox Cheat Download Led to a $2M Data Heist Through AI Tool OAuth Abuse

Vercel breached after attacker compromised Context.ai, hijacked an employee's Google Workspace via OAuth, and accessed ...