New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.

Wikipedia hit by self-propagating JavaScript worm that vandalized pages

The Wikimedia Foundation suffered a security incident today after a self-propagating JavaScript worm began vandalizing pages and modifying user scripts across multiple wikis.
Seeking Alpha

Atlassian: This Is Not 2016 Anymore

The YTD damage in the current SaaSpocalypse has been brutal, with Atlassian Corporation (NASDAQ:TEAM) likely being hit the hardest, with its stock down 53% YTD, despite the company reporting ...