Columbia University School of Professional Studies

The Con That Comes Prepared

How AI-enabled deception, open-source software dependencies, and social engineering are reshaping enterprise cybersecurity ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
NPR

Sources & Methods

National security, unlocked. Each Thursday, host Mary Louise Kelly and a team of NPR correspondents discuss the biggest national security news of the week. With decades of reporting from battlefields ...