Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers ...
InfoWorld

Beyond NPM: What you need to know about JSR

Here's how the JavaScript Registry evolves makes building, sharing, and using JavaScript packages simpler and more secure ...

Malicious packages for dYdX cryptocurrency exchange empties user wallets

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX developers and backend systems and, in some cases, backdoored devices, ...
The Hacker News

Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and data-stealing malware.
CNN

SNL’s ‘Mom Confession’ skit is very real. Here’s what the data tells us

“Saturday Night Live” this weekend featured one of its best political sketches in years. It’s about a mother who dramatically reveals to her children that she’s having sudden reservations about ...
Deadline.com

Mike Myers Back On ‘SNL’ As Elon Musk For Trump Awards Cold Open On A Tragic Day In America

The fatal shooting of an American by federal agents in Minneapolis today was left out of SNL‘s cold open tonight as the Lorne Michaels-run show went all Trump all the time again, with some old pals ...
Yahoo

SNL cold open skewers Trump’s obsession with winning prizes – and taking other people’s: ‘I love me!’

In the skit, Trump was hosting The Trumps, a media awards show where he was also nominated for multiple categories, a bizarro world version of the real awards circuit, where Trump recently hosted the ...