A critical Adobe Acrobat zero-day has been exploited for months via malicious PDFs to steal data and potentially take over ...

LinkedIn is facing two lawsuits over its practice of scanning users’ browsers to determine which extensions they’re running.

Hackers linked to North Korea compromised the widely used Axios npm package by tricking a maintainer into installing malware ...

The design flaw in Flowise’s Custom MCP node has allowed attackers to execute arbitrary JavaScript through unvalidated ...

Iran-linked actors target U.S. PLCs using Dropbear and SSH access, disrupting OT systems across sectors and escalating cyber ...

A Rockwell spokesperson said the company has been coordinating closely with government agencies in connection with the ...

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for ...

In early April 2025, security researchers confirmed that North Korean state-sponsored hackers had successfully compromised the Axios HTTP library. It is one ...

Forty-five million weekly downloads. One compromised maintainer. Three hours of exposure before anyone noticed.

Hackers infiltrated Axios maintainers using fake Slack channels and Teams calls, then published infected packages.

Spread the loveIn a significant security incident that has sent shockwaves through the developer community, a North Korean state-sponsored hacking group has successfully compromised the popular Axios ...

Discover the details of the North Korean hack on Axios software. We explain how the UNC1069 group is stealing US ...