New WordPress Initiative Will Secure Plugins And Themes

WordPress announced the Protect The Shire initiative to make all plugins and themes in its repositories and directories ...
Bleeping Computer

New IronWorm malware hits 36 packages in npm supply-chain attack

A new supply-chain attack has infected 36 packages on the Node Package Manager (npm) index with infostealer malware called IronWorm. The malware targets 86 environment variables (key-value pairs) and ...