On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
It is exactly this backdoor that had Google conclude this was a North Korea-sponsored campaign. GTIG said WAVESHAPER.V2 is an ...
A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...
�� CRITICAL: Active supply chain attack on axios -- one of npm's most depended-on packages. The latest [email protected] now pulls ...
The DarkSword iOS exploit chain was used by the Russian APT behind the Coruna exploit in attacks targeting Ukraine.
The LeakNet ransomware gang is now using the ClickFix technique for initial access into corporate environments and deploys a ...
Axios 1.14.1 and 0.30.4 injected malicious [email protected] after npm compromise on March 31, 2026, deploying ...
More than a few voters could find themselves unsatisfied with the Liberals and open to a hard-left turn in future elections ...
A chain of vulnerabilities is letting attackers steal sensitive info from iPhones.
DarkSword exploit targets iOS 18.4–18.7 using 6 flaws and 3 zero-days, enabling rapid data theft from iPhones across multiple ...
The ransomware gang, known for double-extortion attacks, had access to a critical Cisco firewall vulnerability weeks before ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results