Websites have a new way to spy on visitors: Analyzing their SSD activity

Now sites have a new way to spy on their visitors: measuring subtle interactions with their solid-state drives. The technique ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...

Man accused of sexually assaulting woman in Arlington parking garage stairwell

A man was put behind bars after police said he sexually assaulted a woman in the stairwell of a residential parking garage in ...
Consumer Reports

How to Find a Safe and Reliable Used Car for Your Budget

Buying a used car is a great way to save money, but only if you choose a reliable model. CR’s experts have analyzed our exclusive test and survey data to identify the safe, reliable used cars at ...
Microsoft

Typosquatted npm packages used to steal cloud and CI/CD secrets

Microsoft has identified an active supply chain attack targeting the npm package ecosystem. On May 28, 2026, a single threat actor operating under the newly created maintainer alias vpmdhaj (a39155771 ...