Over 140 Mastra AI packages were poisoned on npm via a compromised contributor account in the “easy-day-js” supply chain attack. Learn how this multi-stage exploit bypasses lockfiles, its technical impact, and how to audit your environment for Indicators of Compromise (IoCs).
Stalkerware: The Hidden Threat and How Google Chrome is Fighting Back
Stalkerware is a terrifying form of surveillance software that allows intimate partners or abusers to secretly monitor a victim’s location, messages, calls, and browser history. As this digital abuse escalates, tech companies are fighting back. This article details what stalkerware is, its devastating real-world impact, and how a major update to Google Chrome is directly tackling a key vector—abusive notification prompts and website permissions—to help disrupt the hidden threat and protect users’ privacy.