Music Ally

Spotify says ‘anti-copyright extremists’ scraped its library

This is not the Christmas present that Spotify would have been hoping for: a huge chunk of its metadata being released on filesharing.
The Hacker News

Fake WhatsApp API Package on npm Steals Messages, Contacts, and Login Tokens

A malicious npm package posing as a WhatsApp API intercepts messages, steals credentials, and links attacker devices after 56 ...

Malicious npm package steals WhatsApp accounts and messages

A malicious package in the Node Package Manager (NPM) registry poses as a legitimate WhatsApp Web API library to steal ...