ZDNet

Popular jQuery JavaScript library impacted by prototype pollution flaw

Three years after its last major security bug, the jQuery JavaScript library --used on 74 percent of all internet sites-- has received another security patch this week. This security update addresses ...
Dark Reading

Trojanized jQuery Packages Spread via 'Complex' Supply Chain Attack

Once again, cyberattackers are targeting JavaScript developers — this time in a "complex and persistent supply chain attack" that's distributing Trojanized packages for the popular JavaScript library ...