ZDNet

Hackers are disguising their malicious JavaScript code with a hard-to-beat trick

Over 25% of malicious JavaScript code is obfuscated by so-called 'packers', a software packaging method that has given attackers a way of evading signature-based detection, according to security and ...

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible ...
Gizmodo

TikTok’s In-App Browser Has Code to Track Users’ Inputs and Activity

While TikTok said the code’s only used for debugging, researchers also found Meta products Facebook and Instagram can track users’ in-app browser. Reading time 5 minutes Tick tock goes the clock. It ...
Bleeping Computer

Invisible characters could be hiding backdoors in your JavaScript code

Could malicious backdoors be hiding in your code, that otherwise appears perfectly clean to the human eye and text editors alike? A security researcher has shed light on how invisible characters can ...
The Next Web

How to write cleaner code with JavaScript

Destructuring is one of my favorite tools in JavaScript, in simple terms, destructuring allows you to break down a complex structure (like an array or an object) into simpler parts, though there’s a ...
ZDNet

Microsoft VS Code 1.42 is out: New debug tools for TypeScript, JavaScript, Chrome

Microsoft has released a January update of its popular open-source cross-platform Visual Studio Code (VS Code) code editor. VS Code version 1.42 is available today for Windows 10, macOS, and Linux ...
GIGAZINE

Anthropic acquires JavaScript runtime Bun, Claude Code generates $1.5 billion in revenue in just six months

On December 2, 2025, developer Jared Sumner announced on his blog that his JavaScript runtime, Bun, had been acquired by Anthropic. Anthropic followed suit on December 3, announcing the acquisition of ...