Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...
SecurityWeek

Critical Vulnerability in Claude Code Emerges Days After Source Leak

Within days of each other, Anthropic first leaked the source code to Claude Code, and then a critical vulnerability was found ...

U.S. judge upholds decision to block Fed Chair Jerome Powell subpoenas

A U.S. judge on Friday stood by his prior decision to block subpoenas issued in a criminal investigation into Federal Reserve ...
MacGeneration on MSN

Cloudflare s’attaque à WordPress en lançant son propre CMS

Cloudflare entend occuper une place encore plus importante sur le web. Déjà essentielle pour de nombreux services en tant que ...

How North Korean hackers used fake Teams updates to compromise the Axios library

It's unclear how widespread the damage is from the recent axios hack involving North Korean malware, Microsoft Teams, Slack, ...

Apple releases iOS 18.7.7 to block DarkSword, and these iPhone users need to update immediately

Apple has released critical updates for millions of iPhone and iPad users to combat the 'DarkSword' hacking toolkit. This ...

The Axios Hack: How a single compromised account put millions of developers at risk

What makes this attack so unsettling is that all the hackers had to do was just steal the password of one of the axios ...
Windows Report

Hackers Breached Axios npm by Impersonating Companies and Hijacking Maintainer Access

Hackers infiltrated Axios maintainers using fake Slack channels and Teams calls, then published infected packages.

Le Google Play Store va rendre les avis bien plus utiles avec cette nouveauté

Google envisage l'intégration d'une option aussi simple qu'efficace dans le Play Store. Elle donnerait une raison de parcourir les avis.
ZATAZ

Axios compromis : une attaque discrète au cÅ“ur du code

Axios sur npm révèle une attaque supply chain où deux versions compromises ont diffusé un RAT sur Windows, macOS et Linux.
Batiactu

Hausses de coûts "exagérées" : le ministre incite les TPE du BTP à saisir le médiateur

CRISE. Le gouvernement est conscient des difficultés auxquelles sont confrontées les PME et TPE du BTP. Des réflexions sont en cours sur le sujet. #BatiActu ...