New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.
Dark Reading

260K+ Chrome Users Duped by Fake AI Browser Extensions

The Chrome Web Store has been infested with dozens of malicious browser extensions claiming to provide AI assistant functionality but that secretly are siphoning off personal information from victims.
CNET

It's Been Ages Since You Cleared Your Cache. Go Ahead and Do It Now

Adam Benjamin has helped people navigate complex problems for the past decade. The former digital services editor for Reviews.com, Adam now leads CNET's services and software team and contributes to ...