The Next Web

Someone bought 30 WordPress plugins and planted backdoors in all of them

An attacker purchased 30+ WordPress plugins on Flippa, planted backdoors that lay dormant for eight months, then activated ...
The Hacker News

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

UNC1069 compromised Axios 1.14.1 and 0.30.4 via social engineering, impacting 100M weekly downloads and exposing supply ...
Ecommerce Fastlane

Your Store Now Has Two Customers: The Shift Every Shopify Merchant Needs to Understand

Your store has a new customer. It doesn't have eyes. It doesn't feel urgency from a countdown timer. It evaluates your data ...
PCMag Australia

Stuck on a Website? Google Cracks Down on Aggravating 'Back Button Hijacking'

Google says it's seen a rise in shady and spam websites using 'Back button hijacking' to try and trap or manipulate users ...

Max severity Flowise RCE vulnerability now exploited in attacks

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for ...
CBS 58

Neighbors helping neighbors: Cleanup underway after severe storm leaves damage in Kenosha

Cleanup is underway after a powerful storm tore through Kenosha late Thursday, April 2, knocking down trees and cutting power for many residents.People have been out all day raking ...

Syncfusion Announces Essential Studio 2026 Volume 1

New WPF, web components and Document SDK librariesRESEARCH TRIANGLE PARK, N.C., April 07, 2026 (GLOBE NEWSWIRE) -- Syncfusion®, Inc., the enterprise technology partner of choice, today announced the ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...