On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

DNS text records and a PowerShell script is the latest absurd way someone has managed to get the iconic first-person shooter ...

Windows 11 KB5086672 is now rolling out as an optional update with several notable improvements after March 2026 update ...

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

DeepLoad exploits ClickFix and WMI persistence to steal credentials, enabling stealth reinfection after three days.

A new service on the cybercrime market provides automated capabilities to create persistent information-stealing social ...

Google links Axios npm supply chain attack to UNC1069 after trojanized versions 1.14.1 and 0.30.4 spread WAVESHAPER.V2, ...

The Venom Stealer kit demonstrates both the improving sophistication of infostealers and the ongoing efficiency of the MaaS ...

What's next, a literal potato? Oh yeah. Done that.

Windows 11 Insider builds for late March add Administrator Protection, NPU insights, shared audio upgrades, and accessibility ...

GitHub has been drawn into another cyber threat case after researchers uncovered a multi-stage malware campaign using ...

Venom Stealer is a new malware-as-a-service tool using ClickFix scams to steal credentials, hijack sessions and automate ...