corporate responsibility ⁽²⁾

Yesterday I came across a report on ShadowLeak, a newly exposed zero-click vulnerability that allowed attackers to siphon private Gmail data simply by tricking an AI agent into reading an email. No malicious link needed, no file to open, not…

In the quiet background of the internet, where most users never look, a silent catastrophe has just unfolded. The largest supply chain compromise in npm’s history was revealed yesterday, affecting packages with a combined 2 billion weekly downloads. This wasn’t…