Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
IEEE

Enhancing P2Cast VoD Streaming Performance: A Node Behaviour-Driven Parent Selection Approach Considering VCR Actions

Abstract: In traditional VoD streaming architecture like P2Cast, a parent node for an incoming child node gets selected based on bandwidth-first and local-information-first principles. But since they ...
Developer Tech

Node.js 24: A faster, sleeker JavaScript experience

Node.js 24 has officially arrived, and it’s bringing a rather tasty selection of improvements to the table. If you’re a developer knee-deep in web apps or wrestling with asynchronous code, this ...
Microsoft

Threat actors misuse Node.js to deliver malware and other malicious payloads

Since October 2024, Microsoft Defender Experts (DEX) has observed and helped multiple customers address campaigns leveraging Node.js to deliver malware and other payloads that ultimately lead to ...
Hacker

Claude AI runs JavaScript, Python beats JavaScript on GitHub, & Node.js updates - This Week in JS

We are a weekly podcast and newsletter made to deliver quick and relevant JavaScript updates in just under 4 minutes. We are a weekly podcast and newsletter made to deliver quick and relevant ...
Hacker

JavaScript JS0/JSSugar Proposals, Node.js 23, Next.js 15 RC2 and More - This Week in JS

We are a weekly podcast and newsletter made to deliver... Google’s proposal aims to split JavaScript into two parts: JS0, the core language that engines implement, and JSSugar, extra features that ...
The Hacker News

Node.js Users Beware: Manifest Confusion Attack Opens Door to Malware

The npm registry for the Node.js JavaScript runtime environment is susceptible to what's called a manifest confusion attack that could potentially allow threat actors to conceal malware in project ...