ByteBrief
We're a portrait publication through and through. Turn your phone back and your briefing picks up right where you left it.
(We tried widescreen once. It wasn't us.)
The Shai-Halud supply chain campaign expanded beyond the initial Qix compromise of 18 npm packages. Over 40 additional packages were attacked via the Tinycolor worm vector. The CrowdStrike namespace and DuckDB maintainer account were compromised. Vercel identified 10 customer projects impacted and blocklisted compromised versions.
Tap to vote and see what everyone thinks.
Summary by ByteBrief