Apple has now made it possible for more iPhones still running iOS 18 to receive security updates that protect against the ...
On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...
Google links Axios npm supply chain attack to UNC1069 after trojanized versions 1.14.1 and 0.30.4 spread WAVESHAPER.V2, ...
If you're avoiding iOS 26, you still need protection. Apple is releasing a rare backported iOS 18 update to defend against ...
Developers using the axios package from npm may have downloaded a malicous version that drops a Remote Access Trojan ...
WebRTC skimmer exploits PolyShell flaw since March 19, hitting 56.7% stores, enabling stealth data theft bypassing CSP.
A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...
Google's Gary Illyes published a blog post explaining how Googlebot works as one client of a centralized crawling platform, ...
JFrog reports Telnyx PyPI package was poisoned with malware by TeamPCP Malicious update delivered hidden .wav payload that ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results