ShellGPT makes the terminal user-friendly, saving time by generating commands, automating scripts, and guiding me through tasks.

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...

Supply chain attacks feel like they're becoming more and more common.

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

I’ve tried to make Linux my daily OS, but I keep coming back to Windows. Here’s what still pulls me back, even when Linux ...

During a recent penetration test, we came across an AI-powered desktop application that acted as a bridge between Claude ...

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

North Korean hackers exploit VS Code tasks.json auto-run since Dec 2025 to deploy StoatWaffle malware, stealing data and ...

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...

A threat actor who stole credentials from a legitimate node package manager (npm) publisher has spread a persistent, ...