GlassWorm malware uses a Zig-based dropper to infect developer tools, stealing data and spreading across IDEs.

A widely used JavaScript package used with hundreds of millions of downloads has been compromised in a new supply chain attack to fetch a malware payload for Windows, Linux systems and macOS computers ...

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver remote access trojans to Linux, Windows, and macOS systems. One malicious ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Adobe has released an emergency security update for Acrobat Reader to fix a vulnerability, tracked as CVE-2026-34621, that ...

Security teams are grappling with a major supply chain attack on Axios, a popular JavaScript library with over 100 million ...

Security researchers at Malwarebytes have uncovered a new malware campaign targeting Windows users with a fraudulent clone of Microsoft's site.

The widely used Axios HTTP client library, a JavaScript component used by developers, was recently hacked to distribute ...

An unknown malware slinger targeting open source software developers via Slack impersonated a real Linux Foundation official ...

Today, much of our nation’s health care spending still focuses on treating illness instead of preventing it. Employers have ...

Chrome is set to introduce native lazy loading for video and audio, improving performance, speeding up pages, and reducing ...

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...