Techie Tonic: Two CISOs warn Axios breach changes supply chain trust model

Two CISOs dissect the Axios npm attack, revealing a self-erasing RAT, CI/CD compromise risks and why open-source software ...

Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
The Armenian Weekly

NAASR’s Mardigian Library receives Kalfayan collection

The National Association for Armenian Studies and Research (NAASR) announced the donation of an extraordinary book collection ...

The White House Launched Its Own App With A Glaring Privacy Issue

A new White House app promises direct access to the administration, but its data collection and app behavior raise some ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
The Japan Times

North Korea hackers suspected of attack on widely used software tool

Hackers linked to North Korea are suspected of an ambitious attack on an inconspicuous software package, cybersecurity ...
Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...
IndianWeb2

Cloudflare Launches EmDash as WordPress Alternative with Built‑In Security and Payments

EmDash, the secure serverless CMS successor to WordPress, fixes plugin risks and empowers global publishing in the AI era.
The Next Web

LinkedIn is secretly scanning your browser for 6,000 extensions, and you weren’t told

LinkedIn runs a hidden JavaScript script called Spectroscopy that silently probes over 6,000 Chrome extensions and collects ...
KSL

Human remains found in Utah mountains bring up mixed emotions for families of missing people

The discovery of human remains in the mountains above Springville over the weekend is stirring a mix of hope and anxiety for ...

Anthropic’s Claude Code Update Leaks Source Code, Reveals Always-on Agent and Memory Optimisation: Report

A file containing part of the source code appears to have been leaked with the recent Claude Code 2.1.88 update.