AntV data visualization tool the latest to be hit by ongoing npm supply chain attacks

The world’s largest open-source registry, node package manager (npm), has been hit by another fast-moving malware attack, this time targeting the widely-used AntV enterprise data visualization tool. Unlike last week’s high-profile npm attack on TanStack, which exploited a complex GitHub Actions cache poisoning weakness, the latest incident early on May 19 took the more conventional…

Read More

GitHub scales back bug bounties, reminds users security is their responsibility too

Faced with the growing volume of submission to its bug bounty program, GitHub is replacing cash bounties with swag rewards for reports with low security impact — and asking researchers to stop submitting reports that are low quality or about things that aren’t its fault. The cloud-based code repository platform has seen a sharp increase…

Read More

Why NextEra’s $66.8B Dominion Deal Could Reshape AI Infrastructure

The reported $66.8B bid by NextEra Energy for Dominion Energy is one of the largest utility mergers in U.S. history. At BigDATAwire we have covered how electricity has emerged as a major bottleneck for AI. Yes, the hardware matters, but those aren’t any good if they don’t get the power they need.  Training clusters and…

Read More

Anthropic acquires Stainless to strengthen Claude’s developer tooling

Anthropic has acquired Stainless, a startup that generates SDKs, command-line tools, and MCP servers from API specifications, in a move analysts say targets the “last mile” of developer experience. Founded in 2022 by former Stripe engineer Alex Rattray, Stainless converts API specifications into production-ready SDKs across languages, including Python, TypeScript, Kotlin, Go, and Java. Stainless…

Read More