CSO Online

Malicious packages in npm evade dependency detection through invisible URL links: Report

Researchers outline how the PhantomRaven campaign exploits hole in npm to enable software supply chain attacks.
The Register on MSN

The CAPITAL LETTERS trick that helped merge Windows 95 into NT

Keeping track of checks, 1990s style The early versions of Windows NT were the last hurrah for the Windows 3.1-esque Program ...