Google links Axios npm supply chain attack to UNC1069 after trojanized versions 1.14.1 and 0.30.4 spread WAVESHAPER.V2, ...
Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
The NPM package for Axios, a popular JavaScript HTTP client library, was briefly compromised this week, possibly by North ...
LastPass users are receiving emails about a data breach settlement—but how do you know if the message is legitimate? I'll ...
A hacker took over an account belonging to the lead maintainer of the JavaScript library, Axios, which is used to handle HTTP requests, as reported by Cybernews. Security researchers found that ...
Anthropic is scrambling to contain the leak, but the AI coding agent is spreading far and wide and being picked apart.
Which? is aware of a rise in fake WhatsApp websites. One dodgy website impersonating WhatsApp claims to be a version of the messaging service with extra features. Although it’s unclear how people were ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results