GlassWorm uses a fake WakaTime VS Code extension to infect IDEs, deploy RATs, and steal data, prompting urgent credential ...

A convincing Microsoft lookalike tricks users into downloading malware that steals passwords, payments, and account access.

Prediction markets allow users to wager on the outcome of real-world events, from sports games to interest-rate decisions.

Thirty years of bad decisions finally caught up with your Task Manager ...

Security teams are grappling with a major supply chain attack on Axios, a popular JavaScript library with over 100 million ...

Flyers promoting U.S.-based prediction market platform Polymarket were distributed outside the Rogers Centre during the ...

Experts have pinned the attack on “one of npm’s most depended-on packages” on hackers backed by the Democratic People’s ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

IntroductionOn March 31, 2026, Anthropic accidentally exposed the full source code of Claude Code (its flagship ...

The exposure traces back to version 2.1.88 of the @anthropic-ai/claude-code package on npm, which was published with a 59.8MB ...

Anthropic's Claude Code source has leaked via a packaging error, exposing anti-distillation traps, an undercover mode, and ...

The maintainer account for the axios package on npm was compromised to inject a remote access trojan for Windows, macOS, and ...