The Hacker News

Stealit Malware Abuses Node.js Single Executable Feature via Game and VPN Installers

Fortinet warns Stealit malware uses Node.js SEA and fake installers to deliver stealers, RATs, and persistence.
ZDNet

Microsoft to work with Joyent to port Node.js to Windows, Azure

Microsoft is "formally contributing resources" toward porting Node.js to Windows in partnership with Joyent, according to a June 23 blog post on Nodejs.org. The native port to Windows is underway, and ...
adtmag.com

Node.js Monitoring/Debugging Tool Now Free for Open Source Projects

RisingStack Inc. is making its Trace tool for monitoring and debugging Node.js-based applications free to use with open source projects. "We launched Trace a year ago with the intention of helping ...
Developer Tech

Stealit malware exploits new Node.js feature in attacks

Cybersecurity researchers have discovered a new ‘Stealit’ info-stealing malware campaign that exploits an experimental ...
Forbes

Building Internet Of Things Robots: Microsoft Opens Visual Studio To Node.js

Microsoft ’s approach to openness is continuing positively; from a software application development perspective at least. Naysayers will still argue that it’s too little, too late and that it is ...
CSOonline

Malicious code in the Node.js npm registry shakes open source trust model

Bad actors using typo-squatting place 39 malicious packages in npm that went undetected for two weeks. How should the open source community respond? Software development relies heavily on trust, ...
ZDNet

After governance breakdown, Node.js leaders fight for its survival

After years of battling a string of systematic failures of governance and leadership, the Node.js community, one of the largest collectives of software developers on the internet, reached a breaking ...