Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
Analytics Insight

Axios Supply Chain Attack Exposes Crypto Wallets to Hidden Malware Risk

Axios, a widely used JavaScript HTTP client, was briefly distributed through npm in two malicious versions after a maintainer account was taken over. Security r ...

Technical SEO for generative search: Optimizing for AI agents

Control how AI bots access your site, structure content for extraction, and improve your chances of being cited in ...

Claude Code source code leak: Did Anthropic just expose its AI secrets, hidden models, and undercover coding strategy to the world?

Claude Code, Anthropic’s top AI agent, just suffered a major source code leak. Version 2.1.88 exposed 512,000 lines of ...
The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious [email protected] after npm compromise on March 31, 2026, deploying ...

How Cloudflare’s Dynamic Workers Make Serverless Sandboxes 100X Faster

Discover the architecture behind Cloudflare's Dynamic Workers. Learn how they eliminate cold starts and make serverless sandboxes 100x faster for developers.
The Hacker News

GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data

GlassWorm uses Solana and Google Calendar dead drops to deliver RAT stealing browser data and crypto wallets, impacting ...

Ottawa failed to enforce its own Indigenous contracting rules, procurement watchdog finds

Official criticizes ‘the disingenuousness’ of Ottawa’s goal of awarding 5% of federal contracts to Indigenous businesses ...
LGBTQ Nation on MSN

NB doctor says hospital fired them while supervisor told them transitioning will make them “ugly”

They were told to keep their identity a secret. Now they're suing.
DMR News

Leaked DarkSword Exploit Raises Risk For Hundreds Of Millions Of Older iPhones

A newly leaked version of the DarkSword hacking tool has been published online, raising concerns among researchers that attackers can now easily target ...

A popular coding tool was hijacked to deliver malware.

A hacker took over an account belonging to the lead maintainer of the JavaScript library, Axios, which is used to handle HTTP requests, as reported by Cybernews. Security researchers found that ...

File read flaw in Smart Slider plugin impacts 500K WordPress sites

A vulnerability in the Smart Slider 3 WordPress plugin, active on more than 800,000 websites, can be exploited to allow subscriber-level users access to arbitrary files on the server.