Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
The widely used Axios HTTP client library, a JavaScript component used by developers, was recently hacked to distribute ...
Overview: JavaScript powers essential website features like payments, videos, forms, and menus across modern browsers today.Enabling JavaScript in Windows brows ...
Hackers linked to North Korea are suspected of an ambitious attack on an inconspicuous but widely used software package, ...
Axios, a widely used JavaScript HTTP client, was briefly distributed through npm in two malicious versions after a maintainer ...
Two CISOs dissect the Axios npm attack, revealing a self-erasing RAT, CI/CD compromise risks and why open-source software ...
Threat actors have started exploiting CVE-2025-59528, a critical Flowise vulnerability leading to remote code execution.
A new report dubbed "BrowserGate" warns that Microsoft's LinkedIn is using hidden JavaScript scripts on its website to scan ...
A hacker inserted malware in Axios, an open-source web tool downloaded tens of millions of times weekly, in a widespread hack ...
The full breadth of this incident is still unclear, but given the popularity of the compromised package, we expect it will ...
�� CRITICAL: Active supply chain attack on axios -- one of npm's most depended-on packages. The latest [email protected] now pulls ...
A supply chain compromise involving the widely used JavaScript package Axios is now being tied to a North Korea-linked threat actor, turning what already looked like a serious open-source incident ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results