The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious [email protected] after npm compromise on March 31, 2026, deploying ...
tdtnews.com

Brazil’s dual-fuel ethanol fleet stabilizes gasoline prices despite Iran war oil shock

Brazil is finding protection in a decades-old buffer against shocks that is both cheap and environmentally friendly as global ...
Cybernews

Code trust crisis: Is it safe to update your system during an active supply chain attack?

Language package managers like pip, npm, and others pose a high risk during active supply chain attacks. However, OS updates ...

Official White House app allegedly with extensive tracking functions

The White House app requests extensive permissions on Android. A technical analysis also raises data protection and security ...

Real estate giant buys Denver medical property on Saint Joseph campus

Preview this article 1 min The five-story building contains nearly 100,000 square feet of outpatient medical space in the ...
Foreign Affairs

The Iran War Comes to Iraq

The U.S.-Israeli war against Iran has triggered one of the Middle East’s long-feared nightmares: a full-blown regional conflagration. The expansion of the conflict has had especially significant ...
The Caledonian-Record

Rideshare etiquette draws attention as ride apps grow

Five-star rideshare reviews require more than good driving, as rider behavior can make or break a trip. With 26% of rideshare app users booking trips monthly and 36% of Americans ...

TuxCare’s Senior Developer Advocate To Speak at Voxxed Days Amsterdam 2026

PALO ALTO, CA, UNITED STATES, March 30, 2026 /EINPresswire.com/ -- TuxCare, a global innovator in securing open source, ...

Canucks’ decision to revoke credential of reporter alarms colleagues

The Vancouver Canucks have ignited a debate over the team’s control of media coverage after they removed a beat reporter from ...

GitHub developers targeted by fake VS Code alerts spreading malware

Socket uncovers large-scale GitHub spam campaign abusing “Discussions” notifications Fake advisories with bogus CVEs trick ...
Techzine Europe

Axios npm package compromised, posing a new supply chain threat

Two versions of the widely used JavaScript library axios were maliciously published on npm on March 31, 2026. A hijacked ...