JetBrains opens Early Access Program (EAP) for IntelliJ IDEA 2026.20 0

JetBrains has announced new changes coming to IntelliJ IDEA for the 2026.2 release cycle as it opens its Early Access Program ...

Dozens of Red Hat packages backdoored through its official NPM channel

Official Red Hat NPM accounts have been compromised and used to push a malicious worm that spreads from machine to machine, ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
The New York Times

Home office

We independently review everything we recommend. When you buy through our links, we may earn a commission. Learn more› by Jenni Gritters Whether you’re working from a plane, train, coffee shop, or ...
Microsoft

Typosquatted npm packages used to steal cloud and CI/CD secrets

Microsoft has identified an active supply chain attack targeting the npm package ecosystem. On May 28, 2026, a single threat actor operating under the newly created maintainer alias vpmdhaj (a39155771 ...