GitHub

Chromium Browser DoS Attack via document.title Exploitation

It allows any Chromium browser to collapse in 15-60 seconds by exploiting an architectural flaw in how certain DOM operations ...
CSO Online

Malicious packages in npm evade dependency detection through invisible URL links: Report

Researchers outline how the PhantomRaven campaign exploits hole in npm to enable software supply chain attacks.