Critical flaw in Protobuf library enables JavaScript code execution

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...

Bitwarden CLI npm package compromised to steal developer credentials

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.
Los Angeles Times

Andrea Flores

Andrea Flores is a reporter with De Los covering the many contours of Latinidad for the Los Angeles Times. She holds both her bachelor’s and master’s degrees from Stanford University. Prior to joining ...