A series of malicious LNK files targeting users in South Korea has been detected using a multi-stage attack chain that uses ...
DNS text records and a PowerShell script is the latest absurd way someone has managed to get the iconic first-person shooter ...
Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
A recently released port of Doom can load into memory from Cloudflare without ever writing files to the disc. The project ...
Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...
Two versions of the widely used JavaScript library axios were maliciously published on npm on March 31, 2026. A hijacked ...
On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
REF1695 spreads RATs and miners since Nov 2023 via ISO lures, earning 27.88 XMR across four wallets through cryptomining and ...
Turn any website into a desktop app with Pake. Create fast, lightweight apps without browser dependency or bloat.
With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...
Updated: Hijacked maintainer account let attackers slip cross-platform trojan into 100M-downloads-a-week Axios ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results