Grafana breach caused by missed token rotation after TanStack attack

The Grafana data breach was caused by a single GitHub workflow token that slipped through the rotation process following the ...

New Shai-Hulud malware wave compromises 600 npm packages

Threat actors earlier today published more than 600 malicious packages to the Node Package Manager (npm) index as part of a ...
SecurityWeek

Next.js Creator Vercel Hacked

Vercel confirmed suffering a breach after a hacker claiming to be part of ShinyHunters offered to sell stolen data for $2 million. Vercel confirmed on Sunday that it has suffered an intrusion after a ...
The Hacker News

Microsoft Warns Developers of Fake Next.js Job Repos Delivering In-Memory Malware

A "coordinated developer-targeting campaign" is using malicious repositories disguised as legitimate Next.js projects and technical assessments to trick victims into executing them and establish ...
Microsoft

Developer-targeting campaign using malicious Next.js repositories

Microsoft Defender Experts identified a coordinated developer-targeting campaign delivered through malicious repositories disguised as legitimate Next.js projects and technical assessment materials.
insurancebusinessmag

NEXT Insurance rebrands as ERGO NEXT following Munich Re acquisition

NEXT Insurance has unveiled a new brand identity as ERGO NEXT Insurance, marking the company's integration with ERGO, the primary insurance company of Munich Re. The updated identity follows Munich Re ...
InfoWorld

Developers urged to immediately upgrade React, Next.js

Critical vulnerability in React library should be treated by IT as they did Log4j - as an emergency, warns one expert. Developers using the React 19 library for building application interfaces are ...
InfoQ

TanStack Start: A New Meta Framework Powered by React or SolidJS

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Hacker

Stop Guessing Prices: A Dev’s Guide to Smarter Currency Handling in Next.js

Paul Onu is a founder and product builder at Postly.ai and heyonu.com. He writes about startups, AI, Tech & Business. Paul Onu is a founder and product builder at Postly.ai and heyonu.com. He writes ...
InfoQ

TanStack Releases TanStack Form V1

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Dany Lepage discusses the architectural ...
Willamette Week

Outdoor Retailer Next Adventure to Close Its Doors After 28 Years

The owners of Next Adventure are on to their next adventure, and it won’t be selling you great gear at reasonable prices. “We’ve been in business for 28 years, and we’ve loved every minute of it and ...