The Hacker News

North Korean Hackers Publish 26 npm Packages Hiding Pastebin C2 for Cross-Platform RAT

North Korean-linked campaign publishes 26 malicious npm packages hiding C2 in Pastebin, deploying credential stealers & RAT via 31 Vercel deployments.
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

The module targets Claude Code, Claude Desktop, Cursor, Microsoft Visual Studio Code (VS Code) Continue, and Windsurf. It also harvests API keys for nine large language models (LLM) providers: ...
Communications of the ACM

Safe Coding

Safe coding is a collection of software design practices and patterns that allow for cost-effectively achieving a high degree ...
eLife

The type VI secretion system governs strain maintenance in a wild mammalian gut microbiome

This work will be of significant interest to the microbiome research community. Bacteria inhabiting the mammalian gut coexist in dense communities where contact-dependent antagonism mechanisms are ...
The BMJ

Adherence to legislation and recommendations to publicly post protocols and results of post ...

Objective To assess whether post-authorisation studies registered with the European Medicines Agency (EMA) adhere to legislation and recommendations to publicly post study protocols and results.