Perplexity launches Bumblebee: How its new read-only dev scanner differs from Chainguard

The AI company's Bumblebee tool tackles your most urgent question after any supply‑chain advisory: Do your programmers have ...
The Hacker News

Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware

Packagist packages hid malicious package.json scripts, enabling Linux binary execution during installs and workflows.
The Hacker News

KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike

CVE-2026-5426 enabled KnowledgeDeliver LMS attacks before February 24, 2026, leading to Cobalt Strike infections.
FloorDaily.net

Focus on Leadership: Doug Chadderdon, CEO of Great Floors, discusses his 40 years in flooring – Nov 2020

Doug Chadderdon is a second-generation leader of a $200 million flooring retail chain, Great Floors. This month, he shares the story of how he got into the family business and ways in which he’s ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

Microsoft Threat Intelligence has uncovered an active supply chain attack involving malicious npm packages registered under organizational scopes that mirror real internal corporate namespaces, ...
Microsoft

Microsoft 365 Roadmap

Copilot in Word introduces a Legal Agent designed for contract review, redlining, and negotiation using structured legal workflows. Legal teams gain negotiation ready edits, clear citations, and full ...