The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
Cybernews

Critical compromise: Axios NPM library with 100M weekly downloads is delivering malware

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...
Techzine Europe

Axios npm package compromised, posing a new supply chain threat

Two versions of the widely used JavaScript library axios were maliciously published on npm on March 31, 2026. A hijacked ...

Supply chain blast: Top npm package backdoored to drop dirty RAT on dev machines

The attackers swapped the account's email address for an anonymous ProtonMail inbox and pushed the infected packages manually ...
Windows Latest

Microsoft to upgrade Windows Subsystem for Linux (WSL) with faster file access, better ...

Microsoft plans major WSL improvements in Windows 11 2026, with faster file performance, better networking, and easier setup ...
The Hacker News

DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials

DeepLoad exploits ClickFix and WMI persistence to steal credentials, enabling stealth reinfection after three days.
腾讯网

CoPaw深度解析:源码架构和功能实践

写在最前面,2月28日通义实验室AgentScope团队发布了自研的独立部署开源桌面Agent工具:CoPawhttps://copaw.agentscope.io/CoPaw是整体架构上类似openclaw的工具,用的agentscope框架搭建, ...
Electronics For You

JOB: Firmware Validation Engineer At kasadara In Bengaluru

This role offers hands-on exposure to Smart Energy Metering, IoT systems, Embedded Linux validation, and Microsoft Azure ...