In early April 2025, security researchers confirmed that North Korean state-sponsored hackers had successfully compromised the Axios HTTP library. It is one ...

The rapid adoption of Generative AI Applications across enterprises has transformed productivity, automation, and decision-making. AI tools now power daily workflows by drafting emails, writing code, ...

Or, why the software supply chain should be treated as critical infrastructure with guardrails built in at every layer.

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

A growing body of academic research warns that AI-assisted “vibe coding,” where language models assemble software from ...

Security teams are grappling with a major supply chain attack on Axios, a popular JavaScript library with over 100 million ...

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...

The exposure traces back to version 2.1.88 of the @anthropic-ai/claude-code package on npm, which was published with a 59.8MB ...

North Korean hackers compromised the widely used Axios JavaScript library to infiltrate US companies and steal cryptocurrency ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

Discover the implications of the Claude code leak, revealing the inner mechanics of Anthropic's AI system, including ...

A hacker inserted malware in Axios, an open source web tool downloaded tens of millions of times weekly, in a widespread hack ...