Developer Tech

Stealit malware exploits new Node.js feature in attacks

Cybersecurity researchers have discovered a new ‘Stealit’ info-stealing malware campaign that exploits an experimental ...
ZDNet

GitHub tackles severe vulnerabilities in Node.js packages

GitHub has resolved numerous vulnerabilities in Node.js packages tar and @npmcli/arborist, with the worst allowing file overwrites and arbitrary code execution. On Wednesday, GitHub said the company ...
Ars Technica

Sabotage: Code added to popular NPM package wiped files in Russia and Belarus

A developer has been caught adding malicious code to a popular open-source package that wiped files on computers located in Russia and Belarus as part of a protest that has enraged many users and ...
InfoWorld

What is Node.js? The JavaScript runtime explained

Node.js is a lean, fast, cross-platform JavaScript runtime environment that is useful for both servers and desktop applications. Scalability, latency, and throughput are key performance indicators for ...