The Hacker News

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers

Cookie-gated PHP web shells enable persistent Linux RCE via cron-based re-creation, reducing detection in routine traffic ...
Microsoft

Cookie-controlled PHP webshells: A stealthy tradecraft in Linux hosting environments

Cookie-gated PHP webshells use obfuscation, php-fpm execution, and cron-based persistence to evade detection in Linux hosting ...
Decrypt

Coinbase Links Up With Linux Foundation to Launch x402 Foundation

Coinbase and the Linux Foundation are backing a new group that will steward an open standard for embedding payments into web ...
LinuxInsider

Lock Down Your Linux Laptop on Public Wi-Fi

Public Wi-Fi exposes Linux systems to monitoring, spoofed networks, and data interception. This guide shows how to secure ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
ZDNet

This new Claude Code Review tool uses AI agents to check your pull requests for bugs - here's how

Anthropic launches AI agents to review developer pull requests. Internal tests tripled meaningful code review feedback. Automated reviews may catch critical bugs humans miss. Anthropic today announced ...
Network World

Cisco fixes critical IMC auth bypass present in many products

The Integrated Management Controller (IMC) flaw gives attackers admin access and remote control over servers even when main ...

Google says North Korean hackers behind major attack on Axios

North Korean hackers used an updated version of a known backdoor to target a popular npm package.
Security Boulevard

CanisterWorm: The Self-Spreading npm Attack That Uses a Decentralized Server to Stay Alive

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were ...
Security Boulevard

Axios supply chain attack chops away at npm trust

Developers using the axios package from npm may have downloaded a malicous version that drops a Remote Access Trojan ...
Axios on MSN

North Korean hackers implicated in major supply chain attack

Suspected North Korean hackers are believed to be behind an ongoing compromise of the widely used open-source package Axios, ...