AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.

New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.
InfoQ

Webpack Publishes 2026 Roadmap with Native CSS Support, Universal Target, and Path to Version 6

Webpack's 2026 roadmap, led by Even Stensberg, unveils substantial enhancements aimed at modernizing the bundler. Key ...
The Hacker News

Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft

Malicious Chrome extensions tied to ownership transfers push malware and steal data, exposing thousands to credential theft and system compromise.
IEEE

Influence of Individual Image on Team Dynamics in IT-Related Undergraduate Projects: Investigating the Hue Effect

Abstract: Teamwork is integral to software engineering education, yet team-based assessments may be distorted by cognitive biases such as the “hue effect,” where traits like confidence, communication ...

Principled Technologies and the BenchmarkXPRT Development Community release WebXPRT 5

WebXPRT 5, a free online performance evaluation tool, provides objective information about how well web-connected ...