GlassWorm malware uses a Zig-based dropper to infect developer tools, stealing data and spreading across IDEs.

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

Security teams are grappling with a major supply chain attack on Axios, a popular JavaScript library with over 100 million ...

Adobe has released an emergency security update for Acrobat Reader to fix a vulnerability, tracked as CVE-2026-34621, that ...

The widely used Axios HTTP client library, a JavaScript component used by developers, was recently hacked to distribute ...

Security researchers at Malwarebytes have uncovered a new malware campaign targeting Windows users with a fraudulent clone of Microsoft's site.

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Now a security researcher says a Reader hole has been quietly exploited by malware for as long as four months, fingerprinting ...

Up to four npm packages on Axios were replaced with malicious versions, in one of the most sophisticated supply chain attacks ...

Chrome is set to introduce native lazy loading for video and audio, improving performance, speeding up pages, and reducing ...

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...

�� CRITICAL: Active supply chain attack on axios -- one of npm's most depended-on packages. The latest axios@1.14.1 now pulls ...