The Hacker News

145 Mastra npm Packages Compromised via Hijacked Contributor Account

Mastra npm packages added easy-day-js malware, exposing developer systems and CI runners to infostealer risks.

Infinite Campus: Salesforce Breach Exposed 137,000 Staff Records

Infinite Campus says a Salesforce breach exposed data tied to 137,000 school staff accounts, raising phishing and SaaS ...
Graham Cluley

Smashing Security podcast #472: AI gets hacked, and BitLocker gets bypassed

What if your AI coding assistant could be tricked into stealing your own company’s secrets – by reading a single ...
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
The Next Web

Henrique Schmaiske and the human work behind Meteor 3.0

Meteor CTO Henrique Schmaiske led the framework's largest release in over a decade, removing Fibers and migrating to async/await across 2,300 commits while keeping 500,000+ active installations stable ...
Computerworld

Industry

France’s OVHcloud bets on frontier AI as Europe seeks alternatives to US models The company says the cost of training frontier AI models has fallen sharply, but analysts say the bigger challenge may ...
Dark Reading

Vulnerabilities & Threats

Explore the latest news and expert commentary on Vulnerabilities & Threats, brought to you by the editors of Dark Reading ...
InfoWorld

Technology Industry

A first look at Pyrefly 1.0 Pyrefly, the Python type checker and linter from Meta, has just dropped its first full 1.0 release. It’s intended to be a solid alternative to existing type ...
Microsoft

Microsoft 365 Blog

Navigate blog by Navigate blog by: ...
GitHub

GitHub Copilot: Your AI pair programmer

Can users in my organization use Copilot code reviews for their pull requests if they don’t have a Copilot license? How does billing work for Copilot code review usage generated by users without a ...