On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...

A routine software update for Anthropic's Claude Code tool accidentally leaked its entire source code, sparking rapid ...

Would you like a closer look at Claude? Someone at Anthropic has some explaining to do, as the official npm package for ...

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...

Malwarebytes discovered Infiniti Stealer - a new piece of malware targeting macOS devices.

Turn Excel into a lightweight data-science tool for cleaning datasets, standardizing dates, visualizing clusters, and ...

Google introduces new Gemini switching tools that let users import ChatGPT and Claude chat history, memories, and preferences ...

The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...