An attacker compromised the npm account of a lead Axios maintainer on March 30, and used it to publish two malicious versions of the widely used JavaScript HTTP client library.

Bryce Elder is pitching like an All-Star again. Considered the weak link in the Atlanta rotation coming into the season, Elder has turned in four dominating starts to rekindle memories of his ...

Hackers linked to North Korea compromised the widely used Axios npm package by tricking a maintainer into installing malware ...

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a cross-platform RAT. Axios sits in 80% of cloud environments. Huntress confirmed ...

All macOS users must update their OpenAI apps, including ChatGPT, to the latest versions following a security incident, ...

Used electric vehicles can still be found at a bargain price, regardless of the federal tax credit. Although EVs are ...

Threat actors have started exploiting CVE-2025-59528, a critical Flowise vulnerability leading to remote code execution.

Two CISOs dissect the Axios npm attack, revealing a self-erasing RAT, CI/CD compromise risks and why open-source software ...

A supply chain compromise involving the widely used JavaScript package Axios is now being tied to a North Korea-linked threat actor, turning what already looked like a serious open-source incident ...

Perforce Software, the modern DevOps Tech Stack that ensures AI governance, announced the release of the 2026 PHP Landscape ...

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access trojan to potentially millions of developer environments during a three-hour ...