Crackdown on Afghan protests against arrests of women killed at least 1 person, UN says

The United Nations say that a violent crackdown on a protest in western Afghanistan has left at least one person dead.

The ‘Miasma’ worm source code briefly leaked on GitHub

The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain ...
News-Press NOW

Concentrate AI Launches Free LLM Gateway as Companies Race to Control AI Spend

Backed by more than $5M+ from True Ventures and RRE Ventures, Concentrate gives every company one API for every major model ...

Taiwan fires rockets in China’s direction from a US-supplied mobile launching system in drill

Taiwan's military has sent rockets in China's direction from “shoot and scoot” launchers in a demonstration of how it might ...
The Hacker News

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.
InfoWorld

GitHub finally pulls the plug on automatic install script execution for npm

The change, expected in July, will likely block one of the more common attack vectors; developers are wondering what took ...
SecurityWeek

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...

Miasma worms its way onto GitHub as attack kit goes open source

As if the Miasma situation weren't bad enough, now this weapon is spreading like wildfire. Someone open sourced the entire ...
SecurityWeek

OWASP Incubator Project Helps Developers Find and Fix Vulnerable Dependencies in Seconds

CVE Lite CLI helps developers quickly identify and fix vulnerable npm dependencies during development, reducing delays and ...

Google Reportedly Wants Android App Code From Play Store Developers

Google is reportedly offering to pay select Android developers for source-code access. Here’s what Play Store developers ...
The Register-Herald

Raleigh County residents react to $700M oval office press conference

BECKLEY — Coal still moves through southern West Virginia as something more than fuel. It moves through family paychecks, ...
IEEE

Evaluating a Visual Approach for Understanding JavaScript Source Code

Abstract: To characterize the building blocks of a legacy software system (e.g., structure, dependencies), programmers usually spend a long time navigating its source code. Yet, modern integrated ...