The Axios Hack: How a single compromised account put millions of developers at risk

What makes this attack so unsettling is that all the hackers had to do was just steal the password of one of the axios ...
SecurityWeek

Exploited Vulnerability Exposes Nginx Servers to Hacking

A critical Nginx UI vulnerability that allows attackers to take full control of servers has been exploited in the wild.
Windows Report

Axios Hack Bypasses GitHub Protections and Installs Hidden Malware on Systems

The popular JavaScript HTTP client Axios has been compromised in a supply chain attack, exposing projects to malware through malicious npm releases. Security researchers from StepSecurity identified ...
Digit

Using an old iPhone? This DarkSword hack can quietly steal your data in seconds, how to be safe

If you’re using an old iPhone with an older version of iOS, you should be aware. According to Google, Lookout, and iVerify, a newly identified cyberattack campaign called DarkSword is targeting Apple ...
SecurityWeek

OpenAI Impacted by North Korea-Linked Axios Supply Chain Hack

OpenAI is one of many organizations affected by the recent Axios supply chain attack attributed to North Korean hackers.
Nextgov

Anthropic’s Glasswing initiative raises questions for US cyber operations

Intelligence officials and industry are weighing how Claude Mythos Preview could reshape hacking and cyberdefense. The ...

Alleged North Korean hack of US companies could take 'months' to recover from

North Korean hackers just compromised a massively popular tool to steal crypto. Find out if your business downloaded this ...
Independent.ie

New DarkSword iPhone hack ‘can steal everything’ just by visiting the wrong website

Hundreds of millions of iPhones are vulnerable to a newly discovered hacking toolkit that takes passwords, WhatsApps, wallet details and browser history without the user every knowing iPhone 8 ...

Google will now punish websites that hijack the back button to serve you ads

Google said it has noticed a sharp rise in websites hijacking the back button to show ads when users press it, so it will now ...

Cloudflare’s new CMS is not a WordPress killer, it’s a WordPress alternative

WordPress's massive installed base isn't going anywhere, but many developers and AI agents are not opting for the product for new sites. Will they go for Cloudflare instead?