Chainguard launches trusted collection of verified JavaScript libraries

Chainguard Libraries for JavaScript include builds that are malware-resistant and built from source on SLSA L2 infrastructure ...
InfoWorld

QR codes become the vehicle for malware in new technique

A newly-discovered malicious package with layers of obfuscation is disguised as a utility library, with malware essentially ...

GitHub details upcoming changes to improve security in wake of Shai-Hulud worm in npm ecosystem

In response to the recent supply chain attack in the JavaScript package manager npm, GitHub has made a few changes that will ...

10 ChatGPT Codex secrets I only learned after 60 hours of pair programming with it

Pair programming with ChatGPT Codex for a week exposed hard-won lessons every developer should know before trying it.
The Hacker News

GitHub Mandates 2FA and Short-Lived Tokens to Strengthen npm Supply Chain Security

GitHub enforces FIDO 2FA and seven-day token limits after Shai-Hulud npm attack to boost supply chain security.
The Indiana Lawyer

Indiana University launches a new artificial intelligence tool for use by faculty, students

This fall, Indiana University began rolling out a new feature across its campuses to encourage the responsible use of ...

Listen: Harlequins v Bath & Newcastle v Saracens

Listen to live BBC Radio commentaries as Harlequins face Bath and Newcastle Red Bulls take on Saracens in the Prem.
WeLiveSecurity

DeceptiveDevelopment: From primitive crypto theft to sophisticated AI-based deception

ESET researchers reveal how malware operators collaborate with covert North Korean IT workers, posing a threat to both headhunters and job seekers.
AARP

How a Government Shutdown Could Impact Food Assistance

Those disruptions contributed to “negative impacts to SNAP participants, including exacerbating food insecurity, burdening ...
The Hacker News

DPRK Hackers Use ClickFix to Deliver BeaverTail Malware in Crypto Job Scams

DPRK used ClickFix to deliver compiled BeaverTail to crypto marketers; Windows build used password-protected archives, ...
Indianapolis Business Journal

UPDATE: IEDC board allows Elevate Ventures to continue investment activity

The move came hours after Gov. Mike Braun—whose administration last spring froze funding for the nonprofit—made an ...

Starmer says people will not be able to work in UK without digital ID

Conservative leader Kemi Badenoch calls the scheme a "desperate gimmick", while the Lib Dems fear it would force people to ...