Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
Security Boulevard

Anthropic Claude Code Leak

IntroductionOn March 31, 2026, Anthropic accidentally exposed the full source code of Claude Code (its flagship ...

AI finds critical ImageMagick vulnerabilities in default configurations

An AI pentesting tool has discovered critical vulnerabilities in default ImageMagick configurations. Workarounds offer ...

'Hundreds of thousands of stolen secrets could potentially be circulating as a result of these recent attacks': Google says North Korean hackers behind major attack on Axi…

It is exactly this backdoor that had Google conclude this was a North Korea-sponsored campaign. GTIG said WAVESHAPER.V2 is an ...
SecurityWeek

Axios NPM Package Breached in North Korean Supply Chain Attack

North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.

Why a former Google exec chose Olive Branch for a cannabis dispensary

A former Google exec returned to Mississippi to open a franchise in Olive Branch. The cannabis dispensary focuses on patient ...
CSO Online

Attackers trojanize Axios HTTP library in highest-impact npm supply chain attack

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...

Chef to open new restaurant venture Downtown

Lunch guests can expect a menu with sushi, poke bowls, and hibachi. Dinner, which will be reservation only, will offer ...
CBS 58

First witnesses called in trial of man accused of fatally shooting Milwaukee police officer

The trial for the man accused of shooting and killing Milwaukee Police Department Officer Kendall Corder, and injuring his partner, continued Tuesday, March 31. Tremaine Jones, 23, ...

Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
IFA Magazine

Liberation Day, one year on: a lesson in active management

One year after Donald Trump’s 'Liberation Day' tariffs sent shockwaves through markets, threatening to lift US tariff rates from 2.5% to as high as 23%, the ...
The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious [email protected] after npm compromise on March 31, 2026, deploying ...