CoinDesk

Not all Ethereum layer 2s are dying, but many general-purpose chains no longer have a reason to exist

In this week's edition of The Protocol Newsletter, we're looking at the state of the Ethereum layer-2 ecosystem.
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...