Bleeping Computer

Critical flaw in Protobuf library enables JavaScript code execution

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used JavaScript implementation of Google's Protocol Buffers. The tool is highly ...
Hosted on MSN

One of JavaScript's most popular libraries compromised by hackers

An attacker compromised the npm account of a lead Axios maintainer on March 30 and used it to publish two malicious versions of the widely used JavaScript HTTP client library, according to ...
The New York Times

Libraries and Librarians

Yale’s Bicentennial Schlock collection offers a window into the star-spangled commercialism that swept the country 50 years ago. By Jennifer Schuessler and Tony Cenicola Barack and Michelle Obama ...