Cyber Security

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account
The popular HTTP client known as Axios has suffered a supply chain attack after two newly published versions of the npm package introduced a malicious dependency. Versions 1.14.1 and 0.30.4 of Axios have been found to inject "plain-crypto-js" version 4.2.1 as a fake dependency. According to StepSecurity, the two versions were published using the compromised npm credentials of the primary Axios
Read More

Related Posts

Fortinet BIG-IP Vulnerability Reclassified as RCE, Under Exploitation

Fortinet BIG-IP Vulnerability Reclassified as RCE, Unde...

Second data breach at European Commission this year leaves open questions over resilience

Second data breach at European Commission this year lea...

OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token Vulnerability

OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex...

RSAC 2026 is back, and the certificate automation gap is impossible to ignore

RSAC 2026 is back, and the certificate automation gap i...

⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks, Apple Forces U.K. Age Checks and More

⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks,...

AI-Powered 'DeepLoad' Malware Steals Credentials, Evades Detection

AI-Powered 'DeepLoad' Malware Steals Credentials, Evade...