Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
Security Boulevard

Frequently Asked Questions About the Axios npm Supply Chain Attack by North Korea-Nexus Threat Actor UNC1069

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...
Microsoft

WhatsApp malware campaign delivers VBScript and MSI backdoors

A malware campaign uses WhatsApp messages to deliver VBS scripts that initiate a multi-stage infection chain. The attack ...
The Hacker News

ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More Stories

ThreatsDay Bulletin covers stealthy attack trends, evolving phishing tactics, supply chain risks, and how familiar tools are ...
Sports Illustrated

Barcelona Player Ratings vs. Sevilla: Five-Star Performance Includes Hat-Trick

Barcelona asserted their dominance over Sevilla in a crushing 5–2 win on Sunday afternoon, capped by a hat-trick from captain Raphinha. Victory for Hansi Flick’s side re-established the Catalan giants ...
CricBuzz

Chennai Super Kings vs Royal Challengers Bengaluru, 8th Match, Indian Premier League 2025 - Commentary

Rajat Patidar | PoTM: It was a good total on this surface. Ball was stopping a bit and it wasn't easy for batters. It's always special playing at Chepauk against Chennai because of the fans. Not only ...