Security teams are grappling with a major supply chain attack on Axios, a popular JavaScript library with over 100 million ...

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...

It's unclear how widespread the damage is from the recent axios hack involving North Korean malware, Microsoft Teams, Slack, ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

The maintainer account for the axios package on npm was compromised to inject a remote access trojan for Windows, macOS, and ...

North Korean hackers used an updated version of a known backdoor to target a popular npm package.

Anthropic holds back its most advanced model yet to allow companies and institutions to prepare.

Google patches 21 Chrome vulnerabilities, including an actively exploited zero-day flaw that could enable code execution and ...

Google links Axios npm supply chain attack to UNC1069 after trojanized versions 1.14.1 and 0.30.4 spread WAVESHAPER.V2, ...

An AI pentesting tool has discovered critical vulnerabilities in default ImageMagick configurations. Workarounds offer ...

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...