The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
Techzine Europe

Axios npm package compromised, posing a new supply chain threat

Two versions of the widely used JavaScript library axios were maliciously published on npm on March 31, 2026. A hijacked ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
The Hollywood Reporter

Sarah Michelle Gellar Hopes ‘Buffy’ Reboot Pilot Doesn’t Leak, Urges Fans Not to Read Script

The 'Buffy' star weighs in on the latest news in Disney's very messy reboot cancellation. By James Hibberd Writer-at-Large Gellar noted that there’s a version of the Buffy reboot pilot script making ...

This App Makes Even the Sketchiest PDF or Word Doc Safe to Open

When somebody sends you a document as an attachment, don't just open it. Use the free tool Dangerzone to scrub it clean of ...

Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package ...

Claude Code leak used to push infostealer malware on GitHub

Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar ...
TwinCities.com

Justice Department will allow lawmakers to see unredacted versions of released Epstein files

WASHINGTON (AP) — The Department of Justice will allow members of Congress to review unredacted files on the convicted sex offender Jeffrey Epstein starting on Monday, according to a letter that was ...
Sky

What Starmer doesn't want to see in the Mandelson files

The first wave of files relating to Peter Mandelson's appointment as US ambassador are to be released today. Not only will we see emails, WhatsApps and minutes about the due diligence, any comments ...
CSO Online

Attackers trojanize Axios HTTP library in highest-impact npm supply chain attack

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...
Variety

Arnold Schwarzenegger Says ‘Conan 3’ in the Works, Reveals New ‘Predator’ Movie Talks and ‘Commando 2’ Script: ‘The Studio Has Plenty of Money to Make Those ...

Arnold Schwarzenegger revealed during a conversation at this year’s Arnold Sports Festival in Columbus, Ohio that he is in talks to return to three of his most iconic action franchises: “Predator,” ...