New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.
Touchdown Wire

One python hunter dominates March competition for removing snakes

A python hunter earned multiple cash bonuses in March for capturing the most and longest snakes. The South Florida Water Management District's program pays contractors to remove invasive Burmese ...