If you're avoiding iOS 26, you still need protection. Apple is releasing a rare backported iOS 18 update to defend against ...

North Korean hackers compromised the widely used Axios JavaScript library to infiltrate US companies and steal cryptocurrency ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

A malware campaign uses WhatsApp messages to deliver VBS scripts that initiate a multi-stage infection chain. The attack ...

'This is unironically a malware nuclear missile.' ...

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...

North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.

Developers using the axios package from npm may have downloaded a malicous version that drops a Remote Access Trojan ...

The leak provides competitors—from established giants to nimble rivals like Cursor—a literal blueprint for how to build a ...

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...

A hacker inserted malware in Axios, an open source web tool downloaded tens of millions of times weekly, in a widespread hack ...

The full breadth of this incident is still unclear, but given the popularity of the compromised package, we expect it will ...