Apple has rolled out “Featuring Nominations” within App Store Connect, giving developers a better shot at the App Store spotlight. In an update on Apple’s developer site, the company wrote: “Share your app or game’s upcoming content and enhancements for App Store featuring consideration with new Featuring Nominations in App Store Connect. Submit a nomination… …
Read more “Developers get a better shot at App Store spotlight”
Data breaches have become a regular occurrence, putting millions of individuals at risk of having their personal details exposed. From email addresses and passwords to more sensitive information, breach incidents remind us just how vulnerable our data can be. While predicting when a breach will happen is impossible, taking steps to protect yourself is in… …
Read more “DataBreach.com takes on HaveIBeenPwned in data protection”
JetBrains has a series of enhancements across its product offerings with the 2024.3 release, providing developers with a more refined experience. The company’s IDEs are now equipped with the ability to reveal the logical structure of code, thereby aiding developers in grasping projects comprehensively. This update streamlines the debugging of Kubernetes applications and offers extensive… …
Read more “JetBrains 2024.3 release elevates the developer experience”
Unity has reported financial results for Q3 2024, which surpassed adjusted profit expectations despite a modest decline in revenue. The company recorded a 2% drop in revenue compared to last year, totalling $429 million, yet this remained above Unity’s guidance of $415 million to $420 million. In a letter to shareholders, Unity expressed optimism about… …
Read more “Unity exceeds profit expectations despite revenue slide”
The Socket Research Team has identified a malicious Python package named ‘fabrice’, which poses as the popular ‘fabric’ SSH automation library and steals AWS credentials from unsuspecting developers. This discovery underscores the continuing risk of malware being delivered via deceptively named open-source libraries, following recent large-scale attacks that have targeted NPM users. Since its live… …
The latest CSS survey results offer valuable insights into the current landscape of front-end development. Although surveys may not capture a complete picture, they do highlight significant trends and areas of interest in the CSS community. Pay disparities and regional trends The survey revealed persistent pay disparities, with men consistently earning more than women. Furthermore,… …
Read more “CSS trends 2024: Developer experience, tools, and more”
Checkmarx researchers have detected a unique supply chain attack within the NPM ecosystem that uses the Ethereum blockchain. The malicious package, dubbed “jest-fet-mock,” targets developers with a multi-platform malware employing Ethereum smart contracts for command-and-control (C2) operations. This marks a convergence of blockchain technology with traditional attack vectors—a method not yet observed in NPM packages. … …
Read more “NPM supply chain attack uses Ethereum blockchain”
Sysdig’s Threat Research Team (TRT) has uncovered a global operation known as EMERALDWHALE, which has stolen over 15,000 cloud service credentials by exploiting exposed Git configuration files. EMERALDWHALE utilised multiple private tools to exploit several misconfigured web services, resulting in the theft of credentials from more than 10,000 private repositories. Though the operation’s primary targets… …
Read more “EMERALDWHALE exploits vulnerable Git configuration files”