Security Boulevard

Frequently Asked Questions About the Axios npm Supply Chain Attack by North Korea-Nexus Threat Actor UNC1069

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...

Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
Cryptopolitan

Supply chain attack on Axios could compromise crypto wallets

Up to four npm packages on Axios were replaced with malicious versions, in one of the most sophisticated supply chain attacks ...
The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
The Hacker News

DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials

DeepLoad exploits ClickFix and WMI persistence to steal credentials, enabling stealth reinfection after three days.
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

Stock Market Today (LIVE): The Reality of Investing in 2026; Roblox Takes Aim at Brand Deal Pricing

Top insights from the latest market news from Friday, March 20, from The Motley Fool analysts on Team Rule Breakers and Team ...
Wall Street Journal

Justice Department Probes Iran’s Use of Binance to Evade Sanctions

The probe follows the crypto exchange’s dismantling of an internal investigation into more than $1 billion that flowed through the platform to a network funding ...
GameSpot

Resident Evil Movie Script Reportedly Leaks, And It's Shocking Some People

GameSpot may get a commission from retail offers. When Barbarian and Weapons director Zach Cregger signed on to helm the next Resident Evil movie, it was described as "a revamp that will take the ...
CSOonline

ClickFix attackers using new tactic to evade detection, says Microsoft

Unwitting victims are now being tricked into installing malware via Windows Terminal, but some experts say this is old news. Regardless, they agree that infosec leaders need to educate employees about ...
abc27

Users evade content moderation with antisemitic emojis, watchdog says

(WHTM) — Emojis in the comment section could be skirting Meta’s rules against hate speech. The Oversight Board, which sets precedent for content moderation on Facebook and Instagram, ruled in a recent ...