The Hacker News

Over 46,000 Fake npm Packages Flood Registry in Worm-Like Spam Attack

The coordinated campaign has so far published as many as 46,484 packages, according to SourceCodeRED security researcher Paul ...

Who Got the Work: Keker to Represent LinkedIn in Pending Health Data Privacy Class Action

Flora Morgan, an associate at Keker, Van Nest & Peters, entered an appearance on behalf of LinkedIn Corp. on Nov. 7 in the ...
InfoWorld

Malicious npm package sneaks into GitHub Actions builds

The typosquatted “@acitons/artifact” package targeted GitHub’s CI/CD workflows, stealing tokens and publishing malicious ...