Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

An initiative within the JavaScript community is attempting to offer an alternative to the way developers view npm packages via the web. The project is ...

Malicious Chrome extensions tied to ownership transfers push malware and steal data, exposing thousands to credential theft ...

OpenAI released Codex Security on March 6, an AI-powered application security agent that scans codebases for vulnerabilities, validates findings in sandboxed environments, and proposes patches. The ...

With zero coding skills, and in a disturbingly short time, I was able to assemble camera feeds from around the world into a ...

ActiveX is a Microsoft software framework that enables applications to share data across web browsers, enhancing functionality and security in computing.

The Google Threat Intelligence Group says it found an iPhone exploit kit that could crack the device and sniff out crypto wallets, apps and seed phrases to steal funds.

TypeScript 6.0 RC represents the final major release built on the current JavaScript-based compiler. The upcoming TypeScript 7.0 will use a Go-based native implementation for enhanced speed and memory ...

Latest VS Code update introduces prepackaged bundles of chat customizations that can include skills, commands, agents, MCP ...

OpenAI has now released the Codex software for Windows devices, after the release of a dedicated Codex program for macOS ...

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.

GitHub’s Octoverse 2025 report reveals a "convenience loop" where AI coding assistants drive language choice. TypeScript’s 66% surge to the #1 spot highlights a shift toward static typing, as types ...