InfoWorld

New npm worm hits CI pipelines and AI coding tools

Researchers warn malicious packages can harvest secrets, weaponize CI systems, and spread across projects while carrying a dormant wipe mechanism.
CoinDesk

IoTeX offers cross-bridge hackers 10% bounty if they return $4.4 million within 48 hours

A private key compromise drained millions from IoTeX’s ioTube bridge, with analysts disputing total losses and warning recovery via THORChain may prove difficult.

N.J. wins ‘ghost gun’ case. Appeals court says 3D printer code isn’t free speech.

The decision backs a lower New Jersey federal court decision against a Texas company that produces 'ghost gun' computer code.