Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
TweakTown

The most boring protocol on the Internet can now run DOOM, loading from nearly 2,000 text records

DNS text records and a PowerShell script is the latest absurd way someone has managed to get the iconic first-person shooter ...

Doom now runs over DNS, loading from nearly 2,000 text records

A recently released port of Doom can load into memory from Cloudflare without ever writing files to the disc. The project ...
Windows Latest

Tested: Windows 11 now has a second taskbar, and it works surprisingly well

Microsoft PowerToys adds a macOS-style Dock to Windows 11. Command Palette Dock brings faster app access, system stats, and ...
XDA Developers on MSN

The most underrated Windows feature is the built-in OpenSSH server

Windows can now behave like a Linux machine.
How-To Geek on MSN

Want to set up Windows like a power user? Start with these 4 tools

Set up a new Windows PC faster with these command line tools that install apps, improve usability, and remove everyday ...
Techzine Europe

Axios npm package compromised, posing a new supply chain threat

Two versions of the widely used JavaScript library axios were maliciously published on npm on March 31, 2026. A hijacked ...
CSO Online

Attackers trojanize Axios HTTP library in highest-impact npm supply chain attack

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...

m365con Highlights PowerShell Automation Challenges at Scale with ScriptRunner--led Session

IT professionals and decision--makers from across the Microsoft ecosystem gathered at m365con to examine real--world challenges in Microsoft 365, Azure, and enterprise automation. One of the key ...
The Hacker News

ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More Stories

ThreatsDay Bulletin covers stealthy attack trends, evolving phishing tactics, supply chain risks, and how familiar tools are ...