Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Latest malware scam weaponizes ‘I’m not a robot’ verification tests against users, experts warn

There’s a new scam to look out for in a place you wouldn’t expect. Security experts at the Identity Theft Resource Center ...
PCMag

Does LastPass Owe You Money? Make Sure That Settlement Email Isn't a Scam

LastPass users are receiving emails about a data breach settlement—but how do you know if the message is legitimate? I'll ...
Security Boulevard

Axios Front-End Library npm Supply Chain Poisoning Alert

Overview On March 31, NSFOCUS CERT detected that the npm repository of the HTTP client library Axios was poisoned by the supply chain. The attacker bypassed the normal GitHub Actions CI/CD pipeline of ...
Engineering News

Coleus Packaging invests R200-million in new plant equipment for metal closures

Crown closures and metal packaging manufacturer Coleus Packaging showcased the R200-million investments it made in its Alrode ...

Connor nabs the OT winner, Jets playoff push intensifies

In the end, it came down to two divergent offensive players, doing what they do best as individuals, all for the betterment ...