Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...

UNC1069 compromised Axios 1.14.1 and 0.30.4 via social engineering, impacting 100M weekly downloads and exposing supply ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...

Over 1,700 malicious packages since Jan 2025 fuel cross-ecosystem supply chain attacks, enabling espionage and financial ...

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...

MANILA, Philippines — Jomoo, a global leader in smart bathroom solutions, participated in the Worldbex Philippines from March 12 to 15. In partnership with its official distributor, Sanitec Bath and ...