JavaScript turns 30: From 10-day prototype to the backbone of the modern web

Thirty years ago, Netscape and Sun Microsystems introduced JavaScript as a new, cross-platform scripting language for ...
InfoWorld

Developers urged to immediately upgrade React, Next.js

Critical vulnerability in React library should be treated by IT as they did Log4j - as an emergency, warns one expert.

Critical vulnerability in React JS framework has a near 100% chance to be exploited

Researchers have uncovered a critical security flaw that could have catastrophic consequences for web and private cloud ...

In 1995, a Netscape employee wrote a hack in 10 days that now runs the Internet

“Bill Gates was bitching about us changing JS all the time,” Eich later recalled of the fall of 1996. Microsoft created its ...
The Hacker News

Critical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code Execution

Critical RSC flaws in React and Next.js enable unauthenticated remote code execution; users should update to patched versions ...

Critical React Vulnerability Puts Web Servers At Immediate Risk

A newly discovered security flaw in the React ecosystem — one of the most widely used technologies on the web — is prompting ...

Open-source toolkit: AI company Anthropic acquires Bun

AI company Anthropic has acquired the open-source JavaScript toolkit Bun, which it uses for the infrastructure of Claude Code ...
The Register-Herald

Men's college soccer: WVU Tech beats Pioneers, will play Grand View for NAIA national championship

After WVU Tech’s 4-0 national quarterfinal win over Indiana Tech on Thursday, play-by-play broadcaster Carter Moles said, “If ...
The Register on MSN

Novel clickjacking attack relies on CSS and SVG

Who needs JavaScript? Security researcher Lyra Rebane has devised a novel clickjacking attack that relies on Scalable Vector ...
The Hacker News

ShadyPanda Turns Popular Browser Extensions with 4.3 Million Installs Into Spyware

ShadyPanda abused browser extensions for seven years, turning 4.3M installs into a multi-phase surveillance and hijacking ...
CSO Online

Warning: React2Shell vulnerability already being exploited by threat actors

It has been seen spreading cryptojacking malware and in attempts to steal cloud credentials from compromised machines.

Awareness for Web Security: The OWASP Top Ten 2025

The first release candidate of the new OWASP Top Ten reveals the biggest security risks in web development – from ...