On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
The widely used Axios HTTP client library, a JavaScript component used by developers, was recently hacked to distribute ...
A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...
UNC1069 compromised Axios 1.14.1 and 0.30.4 via social engineering, impacting 100M weekly downloads and exposing supply ...
A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...
Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
If you are not able to use OpenClaw on Windows 11, use the built-in diagnostic tool, switch to WSL2 instead of PowerShell, ...
Phishing surge, LinkedIn tracking claims, spyware use, and rising stealers expose growing abuse of trusted systems.
The multi-stage campaign targeting South Korea uses weaponized Windows shortcuts and GitHub-based command and control to ...
Updated: Hijacked maintainer account let attackers slip cross-platform trojan into 100M-downloads-a-week Axios ...
LinkedIn runs a hidden JavaScript script called Spectroscopy that silently probes over 6,000 Chrome extensions and collects ...
With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results