Bleeping Computer

NodeJS module downloaded 7M times lets hackers inject code

A Node.js module downloaded millions of times has a security flaw that can enable attackers to perform a denial-of-service (DoS) attack on a server or get full-fledged remote shell access. The ...
InfoWorld

What is Node.js? The JavaScript runtime explained

Node.js is a lean, fast, cross-platform JavaScript runtime environment that is useful for both servers and desktop applications. Scalability, latency, and throughput are key performance indicators for ...
VentureBeat

Why Walmart is using Node.js

Node.js has been the delight of San Francisco hackers for the past couple years now, but startups and indie developers aren’t the only ones using JavaScript on the server side. At Node Summit today, ...
Dark Reading

New ODGen Tool Unearths 180 Zero-Days in Node.js Libraries

Researchers at Johns Hopkins University recently uncovered a startling 180 zero-day vulnerabilities across thousands of Node.js libraries using a new code analysis tool they developed specifically for ...
InfoWorld

The complete guide to Node.js frameworks

Take a tour of the best web frameworks for Node, from minimalist crowd pleasers like Express, Koa, and Fastify to progressive and full-stack options like Nest, Next, SvelteKit, and more. Node.js is ...
Hosted on MSN

Stealit Campaign Harnesses Experimental Node.js Feature for Windows Infiltration

A newly observed wave of attacks is using the cutting-edge Single Executable Application capability in Node. js to deliver the Stealit malware to Windows systems, marking a strategic shift by threat ...