New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.
InfoQ

Cloudflare Releases Experimental Next.js Alternative Built with AI Assistance

Cloudflare released vinext, an experimental Next.js reimplementation built on Vite by one engineer, with AI guidance over one ...
Reuters

Exclusive: Google to test changes to search results, source says as EU fine looms

Google to test proposed changes soon, source says Changes aim to give rivals greater prominence in search results EU fines for Digital Markets Act breaches can be as much as 10% of global revenue ...