Red Hat hit by npm supply‑chain attack - here's how to stay safe

Days after IBM and Red Hat announced a master security plan for open-source software, Red Hat suffers a major breach of its ...
InfoWorld

Microsoft makes Linux developers feel more at home in Windows with Coreutils release

As well as Coreutils, the Build 2026 developer conference also saw Microsoft announce WSL containers CLI and API to deploy ...

How to try out over 85 Linux distros, no installation required - with DistroSea

How to try out over 85 Linux distros, no installation required - with DistroSea ...
Liliputing

Dell XPS 14 laptop is now available with Ubuntu Linux

The Dell XPS 14 is a premium thin and light laptop with an Intel Panther Lake processor that launched earlier this year as ...

Steam on Android handhelds just got a lot better thanks to this updated Linux distro

You can run an official version of Steam on your Android handheld thanks to Rocknix, and this Linux distribution just got a ...
How-To Geek on MSN

I figured out how to run my favorite Linux TUI music player on Android, and it's better than any app on the Play Store

Cmus is my favorite music player on Linux. Here's how I turned set up this TUI app on my Android phone.
Hackaday

This Week In Security: Ubiquiti Fixes, And FreeBSD Joins The Club You Don’t Want To Join

Ubiquiti released a new security bulletin detailing fixes for six security issues, including one rated 9.1 (critical) and one scoring a perfect 10.0 on the CVE risk scale. The vulnerabilities ...
Android

Infostealer Malware Sneaks into Popular Codex UI Tool After One Month of Building Trust

Cybersecurity researchers at Aikido Security have uncovered a malicious supply chain attack targeting OpenAI Codex developers via the npm package “codexui-android”. While the associated GitHub ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...