A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...
The Tool Lending Library is a free program that gives PG&E customers access to a wide range of professional‑grade energy and ...
The exposure traces back to version 2.1.88 of the @anthropic-ai/claude-code package on npm, which was published with a 59.8MB ...
North Korean hackers compromised the widely used Axios JavaScript library to infiltrate US companies and steal cryptocurrency ...
It is exactly this backdoor that had Google conclude this was a North Korea-sponsored campaign. GTIG said WAVESHAPER.V2 is an ...
A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...
According to Google researchers, a North Korean group tracked as UNC1069 has previously targeted cryptocurrency and ...
'This is unironically a malware nuclear missile.' ...
In 2025, Google fixed a total of eight zero-days exploited in the wild, many of which were discovered and reported by ...
Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.
Threat actors hijacked the popular npm package axios to spread RAT malware after compromising an open‑source maintainer’s ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results