DPRK-linked actors use GitHub C2 and LNK phishing in South Korea, enabling persistent PowerShell control and data ...
North Korean hackers used an updated version of a known backdoor to target a popular npm package.
Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
I’ve used plenty, but this one rewired my daily workflow.
On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
The financially motivated cybercriminal threat actor Storm-1175 operates high-velocity ransomware campaigns that weaponize ...
Updated: Hijacked maintainer account let attackers slip cross-platform trojan into 100M-downloads-a-week Axios ...
This unexpected choice revolutionized how I interact with my computer, making the once-intimidating terminal accessible to ...
The forgotten endpoint problem isn't a sophisticated supply chain attack or a novel vulnerability. It's basic blocking and ...
Two versions of the widely used JavaScript library axios were maliciously published on npm on March 31, 2026. A hijacked ...
A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...
A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results