Bitwarden CLI npm package compromised to steal developer credentials

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.

New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.
IGN

Sing 2 Review

Sing 2 debuts in theaters on Dec. 22. Fans of Illumination’s Sing should be happy to hear writer/director Garth Jennings’ sequel, Sing 2, hits all the same notes. Buster Moon’s (Matthew McConaughey) ...
Arizona Daily Star

Squaw Peak is officially renamed for Piestewa

PHOENIX — The U.S. Board on Geographic Names voted Thursday to officially change the name of a prominent Phoenix mountain to Piestewa Peak to honor the first American Indian woman to die in combat ...