Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
Decrypt

Anthropic Accidentally Leaked Claude Code's Source—The Internet Is Keeping It Forever

Anthropic is scrambling to contain the leak, but the AI coding agent is spreading far and wide and being picked apart.
Tom's Hardware on MSN

One of JavaScript's most popular libraries compromised by hackers

An attacker compromised the npm account of a lead Axios maintainer on March 30, and used it to publish two malicious versions ...
Opinion
The LancetOpinion

The public health response to the Epstein files

In 2019, revelations that American financier Jeffrey Epstein had orchestrated a powerful international network for human trafficking and sexual exploitation shocked the conscience of global society.
The New York Times

The Epstein Files

Times reporters and editors are digging through millions of pages of Jeffrey Epstein documents released by the Justice Department, and tracking the fallout. Times reporters and editors are digging ...