Researchers uncover an ongoing large-scale supply-chain attack which exploits dependency confusion attacks against the NPM package repository.

---

A group of academics has designed a new system known as “Privid” that enables video analytics in a privacy-preserving manner.