JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.

Microsoft is rolling out a new Python Environments extension in VS Code, now reaching 20% of stable channel users. The tool provides a dedicated panel for creating, managing and assigning environments ...

Security researchers found malware packages using the Ethereum blockchain to conceal malicious commands on GitHub repos.

Can We Trust Code More Than Banks? Understanding Bitcoin’s New Trust Model The "institutions as code" vision is still in its early stages, yet it has already been seen with Bitcoin. As ...

Google’s Rich Widmann shared updates on the Universal Ledger, a 'planet-scale' blockchain now in testing with CME Group. The ...

ReversingLabs reveals hackers using Ethereum Smart contracts in NPM packages to conceal malware URLs, bypass scans, and ...

Cybersecurity firm HiddenLayer uncovers a “CopyPasta License Attack” that exploits Coinbase’s favored AI coding tool, Cursor.

Popular npm packages debug, chalk, and others hijacked in massive supply chain attack Crims have added backdoors to at least ...

Hackers use Ethereum smart contracts to hide malware in NPM packages, launching a stealthy crypto-themed supply chain attack.

U.S. Justice Department Official Says Writing Code Without Bad Intent 'Not a Crime' Despite this month's trial conviction of Tornado Cash developer Roman Storm, the DOJ signaled to a crypto crowd ...