Security teams are grappling with a major supply chain attack on Axios, a popular JavaScript library with over 100 million ...

A version of the AI coding tool in Anthropic's npm registry included a source map file, which leads to the full proprietary ...

Vite+ Alpha has been released – open source under the MIT license. The manufacturer VoidZero, which also develops the open-source JavaScript build tool Vite, had initially announced Vite+ last year as ...

Suspected North Korean hackers have compromised Axios, one of the most widely used JavaScript libraries in American software development, by hijacking a maintainer’s npm account and publishing tainted ...

IntroductionOn March 31, 2026, Anthropic accidentally exposed the full source code of Claude Code (its flagship ...

Spread the loveIn a worrying development for the cybersecurity landscape, North Korean hackers have successfully infiltrated the widely-used Axios NPM package, introducing backdoored versions of the ...

This week, Lloyds data leak hits 450K, Dutch treasury breach, Citrix flaw exploited, Iran-linked ransomware ops, TrueConf ...

Discover the implications of the Claude code leak, revealing the inner mechanics of Anthropic's AI system, including ...

Cloud attacks are getting faster and deadlier - here's your best defense plan ...

The Glassworm campaign has compromised over 151 GitHub repositories and npm packages using invisible Unicode payloads that evade standard code review.

Attackers have hijacked 75 of 76 GitHub Actions tags for Aqua Security's Trivy scanner, distributing credential-stealing ...