The Hacker News

Stealit Malware Abuses Node.js Single Executable Feature via Game and VPN Installers

Cybersecurity researchers have disclosed details of an active malware campaign called Stealit that has leveraged Node.js' Single Executable Application (SEA) feature as a way to distribute its ...
The Hacker News

New ClayRat Spyware Targets Android Users via Fake WhatsApp and TikTok Apps

A rapidly evolving Android spyware campaign called ClayRat has targeted users in Russia using a mix of Telegram channels and lookalike phishing websites by ...
InfoQ

Next.js 15.5 Ships - Turbopack Production Builds, Node.js Middleware, and Tighter Typescript DX

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Northside Sun

Crechale's still kicking

While many fine dining restaurants have fled South Jackson, Bob Crechale and his dedicated, long term staff are still serving great food on Highway 80. Back in the day, Crechale's was the place to go ...
Developer Tech

Node.js 24: A faster, sleeker JavaScript experience

Node.js 24 has officially arrived, and it’s bringing a rather tasty selection of improvements to the table. If you’re a developer knee-deep in web apps or wrestling with asynchronous code, this ...
Microsoft

Threat actors misuse Node.js to deliver malware and other malicious payloads

Since October 2024, Microsoft Defender Experts (DEX) has observed and helped multiple customers address campaigns leveraging Node.js to deliver malware and other payloads that ultimately lead to ...
SecurityWeek

Vulnerabilities in MongoDB Library Allow RCE on Node.js Servers

OPSWAT details two critical vulnerabilities in the Mongoose ODM library for MongoDB leading to remote code execution on the Node.js server. Two critical-severity vulnerabilities in the Mongoose Object ...
InfoQ

Vite 6 Released: New Environment API Helps Supporting Edge Use Cases

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. This article dives into the happens-before ...
Hacker

Streaming in Next.js 15: WebSockets vs Server-Sent Events

Real-time data streaming is essential for modern web applications, powering features like low-latency audio/visual streaming, stock updates, collaborative tools, and live geolocation. Next.js provides ...
TechSpot

Intel unveils Clearwater Forest chips based on its 18A node - the one that could make or break Team Blue

Why it matters: Intel's future depends on the success of its 18A node, so news that the first high-volume 18A production chips are underway is a milestone for the beleaguered company. Clearwater ...
InfoWorld

File handling in server-side JavaScript

In server-side JavaScript, you will most likely use the fs library for dealing with the filesystem. This library is a module in Node and other platforms like Bun. So you don’t need to install it using ...