Cybernews

The 2025 npm worm that shook the software supply chain

As a worm spread through hundreds of npm packages in 2025, it didn't exploit a vulnerability – it exploited the architecture.

Advisers who recommend ‘safe’ investments are really just safeguarding their fees

Only those collecting fees will be protected until regulators replace risk questionnaires with genuine financial planning ...