Bitwarden CLI npm package compromised to steal developer credentials

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.

How indirect prompt injection attacks on AI work - and 6 ways to shut them down

Cybercriminals are tricking AI into leaking your data, executing code, and sending you to malicious sites. Here's how.
Visual Studio Magazine

Using Data API Builder to Speed Up Application Development

Microsoft's Data API Builder is designed to help developers expose database objects through REST and GraphQL without building a full data access layer from scratch. In this Q&A, Steve Jones previews ...

X makes it more expensive to post links through its API

Social network X has made it more expensive to post links through its API. The change is designed to thwart spam and “vectors of misuse,” the company said. The new pricing increased costs from $0.01 ...

New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.
9to5Google

The X app – you know, Twitter – for Android is on fire, but a fix is coming

Over the past few days, the Twitter/X app for Android has been left with some of its core functions inoperable. Opening links either pops up a menu to choose between two Twitter/X apps, or the link ...