Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
The New York Times

Universal Will Give Movies Longer Exclusive Runs in Theaters

Theaters will get a minimum of five weekends of exclusive play and then, starting next year, seven. A pandemic-era policy was guaranteeing only three. By Brooks Barnes Reporting from Los Angeles ...
Security Boulevard

Axios Front-End Library npm Supply Chain Poisoning Alert

Overview On March 31, NSFOCUS CERT detected that the npm repository of the HTTP client library Axios was poisoned by the supply chain. The attacker bypassed the normal GitHub Actions CI/CD pipeline of ...