ByteBrief
We're a portrait publication through and through. Turn your phone back and your briefing picks up right where you left it.
(We tried widescreen once. It wasn't us.)

Version 8.14.0 of the jscrambler npm package shipped with a malicious preinstall hook that drops a Rust infostealer during installation on Windows, macOS, and Linux. Socket flagged the release six minutes after it was published on July 11, 2026. The payload steals cloud credentials, crypto wallets, browser passwords, and AI tool configs.
Tap to vote and see what everyone thinks.
Summary by ByteBrief
Announcing Rust 1.97.0