Cryptopolitan on MSN

IronWorm malware plants rootkit in Arweave ecosystem npm libraries

A malware named IronWorm spread through 36 npm packages in the Arweave ecosystem, stealing developer credentials and self ...

UX Design as a Waste Machine: The Hidden Costs of Digital Smoothness

Good UX hides its waste. But it doesn't disappear – it ends up in data centers, supply chains, and telemetry databases.
Cryptopolitan on MSN

The 5 best Solana APIs and node providers for developers in 2026

Solana’s role in crypto has shifted considerably over the past two years. It was once mostly a high-throughput Ethereum ...

Strava Tightens API Access as AI Scraping Concerns Grow Ahead of IPO

Strava is tightening API access and login requirements to curb AI scraping and data misuse ahead of its proposed IPO. Here’s ...

Dozens of Red Hat packages backdoored through its official NPM channel

Official Red Hat NPM accounts have been compromised and used to push a malicious worm that spreads from machine to machine, ...

Google Reportedly Wants Android App Code From Play Store Developers

Google is reportedly offering to pay select Android developers for source-code access. Here’s what Play Store developers ...
InfoQ

Google Workspace CLI: Unified Command-Line Tool Built for Humans and AI Agents

Google has released a new CLI for Google Workspace, offering a unified interface for various services like Drive, Gmail, and ...
The Hacker News

ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories

Weekly ThreatsDay recap: old bugs, fake tools, shady payload tricks, AI mishaps, and the usual reminder that the internet is ...
Android

Infostealer Malware Sneaks into Popular Codex UI Tool After One Month of Building Trust

Cybersecurity researchers at Aikido Security have uncovered a malicious supply chain attack targeting OpenAI Codex developers via the npm package “codexui-android”. While the associated GitHub ...