Dark Reading

Malicious Next.js Repos Target Developers Via Fake Job Interviews

Linked to North Korean fake job-recruitment campaigns, the poisoned repositories are aimed at establishing persistent C2 ...
Joy of Android

GitHub Games and the Open Approach to Game Development

GitHub games are open-source projects for testing gameplay ideas, sharing code, and collaborating publicly outside ...
Hoodline

San Antonio AI Researchers Sound Alarm On Phantom Package Trap

UTSA: ~20% of AI-suggested packages don't exist. Slopsquatting could let attackers slip malicious libs into projects.

Fake Next.js job interview tests backdoor developer's devices

The Microsoft Defender team has discovered a coordinated campaign targeting software developers through malicious repositories posing as legitimate Next.js projects and technical assessment materials, ...

My new indie darling is this crafting game stuffed with hand-sculpted creatures made by a husband and wife dev team

OddFauna's handmade critters are absolute catnip for my crafting game brain.