ECH encrypts the TLS handshake, backends speak HTTP/2, and Multipath TCP uses multiple network paths in parallel.

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

According to Socket, the extensions (complete list here) are published under five distinct publisher identities – Yana ...

Google's Gary Illyes published a blog post explaining how Googlebot works as one client of a centralized crawling platform, ...

Wasm, PGlite, OPFS, and other new tech bring robust data storage to the browser, Electrobun brings Bun to desktop apps, ...

Threat actors have been observed weaponizing n8n, a popular artificial intelligence (AI) workflow automation platform, to ...

The popular JavaScript HTTP client Axios has been compromised in a supply chain attack, exposing projects to malware through malicious npm releases. Security researchers from StepSecurity identified ...

The open-source IAM system Keycloak 26.6 promotes five features to production status – including federated client ...

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how quickly a compromised package can propagate through the ecosystem.

A supply chain compromise involving the widely used JavaScript package Axios is now being tied to a North Korea-linked threat actor, turning what already looked like a serious open-source incident ...