The Hacker News

Experts Confirm JS#SMUGGLER Uses Compromised Sites to Deploy NetSupport RAT

Researchers detail JS#SMUGGLER, a multi-stage web attack using JavaScript, HTA, and PowerShell to deploy NetSupport RAT on ...
InfoWorld

All I want for Christmas is a server-side JavaScript framework

Could 2026 be the year of the beautiful back end? We explore the range of options for server-side JavaScript development, ...

Critical vulnerability in React JS framework has a near 100% chance to be exploited

Researchers have uncovered a critical security flaw that could have catastrophic consequences for web and private cloud ...

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.

Open-source toolkit: AI company Anthropic acquires Bun

AI company Anthropic has acquired the open-source JavaScript toolkit Bun, which it uses for the infrastructure of Claude Code ...

Why Anthropic Bought Bun, a High-Speed Runtime to Power Claude Tools and Dev Agents

Anthropic’s purchase of Bun focuses on fast runtimes with single-binary deploys and Node.js compatibility, helping teams run ...