Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

Microsoft's Agent Stack Confuses Developers While Rivals Simplify

Microsoft ships Agent Framework 1.0 but Azure's agent stack still spans too many surfaces while Google and AWS offer cleaner developer paths.

How I vibe-coded a web tool in three days with no programming experience

AI chatbots make it possible for people who can’t code to build apps, sites and tools. But it’s decidedly problematic.
The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
eWeek

Google Adds One-Click Chatbot Migration

Uploads bring prompts and responses, but not project files, attachments, or AI-generated images. The rollout skips the UK, ...

Gemma 4 Explained: What It Is, What It Can Do, And How To Use It Right Now

The new family of AI models can run on a smartphone, a Raspberry Pi, or a data centre, and is free to use commercially.

Anthropic Claude source code leak explained: Techie reveals how a 4 am update exposed 512,000 lines of code

A routine software update for Anthropic's Claude Code tool accidentally leaked its entire source code, sparking rapid ...

Claude Code unintentionally open source: Source map reveals all

The source code of Anthropic's CLI tool Claude Code was accidentally made publicly accessible via a source map in the npm ...
MUO on MSN

Android's Linux terminal is so good that I keep finding new reasons not to open my PC

I keep reaching for my phone, and it’s not for scrolling.
The Hacker News

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

UNC1069 compromised Axios 1.14.1 and 0.30.4 via social engineering, impacting 100M weekly downloads and exposing supply ...
Microsoft

WhatsApp malware campaign delivers VBScript and MSI backdoors

A malware campaign uses WhatsApp messages to deliver VBS scripts that initiate a multi-stage infection chain. The attack ...
Virtualization Review

Running AI Natively on Windows 11 Using an eGPU

Tom Fenton reports running Ollama on a Windows 11 laptop with an older eGPU (NVIDIA Quadro P2200) connected via Thunderbolt dramatically outperforms both CPU-only native Windows and VM-based ...