With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...

A threat actor who stole credentials from a legitimate node package manager (npm) publisher has spread a persistent, ...

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

Learn how to automate your Git workflow and environment variables into a single, error-proof command that handles the boring stuff for you.

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...

Lt. Gen. Michael McCurry, commanding general of U.S. Army Futures and Concepts Command, gives a speech during command's activation ceremony at Joint Base Langley-Eustis, Virginia, Feb. 12, 2026.

Have you ever wished Excel could do more of the heavy lifting for you? Imagine transforming hours of tedious data cleaning and analysis into just a few clicks. That’s exactly what Microsoft’s ...