A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...

The widely used Axios HTTP client library, a JavaScript component used by developers, was recently hacked to distribute ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...

archinstall 4.0 replaces the curses interface with Textual, adds firewall and UKI support, and fundamentally modernizes the ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

The maintainer account for the axios package on npm was compromised to inject a remote access trojan for Windows, macOS, and ...

The financially motivated cybercriminal threat actor Storm-1175 operates high-velocity ransomware campaigns that weaponize ...

Hackers are exploiting a critical severity vulnerability, tracked as CVE-2026-3055, in Citrix NetScaler ADC and NetScaler Gateway appliances to obtain sensitive data.

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how quickly a compromised package can propagate through the ecosystem.

IT white papers, webcasts, case studies, and much more - all free to registered TechRepublic members. As someone who has worked closely with small and mid-sized businesses, I see the same challenge ...