On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Google Threat Intelligence Group warns of active supply chain attack on npm’s Axios library Malicious dependency ...

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...

I’ve used plenty, but this one rewired my daily workflow.

I’ve tried to make Linux my daily OS, but I keep coming back to Windows. Here’s what still pulls me back, even when Linux ...

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

A practical, hands-on guide to navigating deepfake technology and reducing the risks it poses to your business.

On March 19, 2026, a threat actor known as TeamPCP compromised Aqua Security’s Trivy vulnerability scanner – the most widely adopted open-source scanner in the cloud-native ecosystem. The attacker ...

In addition to rolling out patches to address two zero-days affecting SQL Server and .NET, Microsoft introduced Common Log File System hardening with signature verification.

7 AI Features in Windows 11 You Should Start Using in 2026 Your email has been sent Most of us use our PCs the same way we always have: click, type, drag, repeat. But Windows 11 has quietly been ...

Microsoft will use standard Windows 11 updates to keep Secure Boot working on existing PCs as the operating system's original certificates near their end. The company says Secure Boot certificates ...