NPM package ‘is’ with 2.8M weekly downloads infected devs with malware

Published on July 23, 2025

The popular NPM package 'is' has been compromised in a supply chain attack that injected backdoor malware, giving attackers full access to compromised devices. [...]

Continue reading on website
Other news

US nuclear weapons agency hacked in Microsoft SharePoint attacks

July 23, 2025
Unknown threat actors have breached the National Nuclear Security Administration's network in attacks exploiting a recently patched Microsoft SharePoint zero-day vulnerability chain. [...]

ChatGPT is rolling out 'personality' toggles to become your assistant

July 23, 2025
OpenAI is rolling out a new "personality" feature on the ChatGPT web app. This allows you to choose between multiple personalities, such as "Robot." [...]