Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
The popular JavaScript HTTP client Axios has been compromised in a supply chain attack, exposing projects to malware through ...
Google links Axios npm supply chain attack to UNC1069 after trojanized versions 1.14.1 and 0.30.4 spread WAVESHAPER.V2, ...
A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...
Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
The NPM package for Axios, a popular JavaScript HTTP client library, was briefly compromised this week, possibly by North ...
Axios, a widely used JavaScript HTTP client, was briefly distributed through npm in two malicious versions after a maintainer account was taken over. Security r ...
The maintainer account for the axios package on npm was compromised to inject a remote access trojan for Windows, macOS, and ...
Claude extension flaw enabled silent prompt injection via XSS and weak allowlist, risking data theft and impersonation until ...
1hon MSN
Apple releases iOS 18.7.7 to block DarkSword, and these iPhone users need to update immediately
Apple has released critical updates for millions of iPhone and iPad users to combat the 'DarkSword' hacking toolkit. This ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results