British manufacturer plans $3M investment in WNY plant

The Manchester-based manufacturer will install an advanced production cell to meet rising demand.

German Village to welcome dozens of gnomes for art installation

Wood‑carved gnomes as large as 5 feet will appear across German Village to mark the German Village Garten Club’s 60th ...

Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...

Samsung to discontinue messaging app in July, asks users to switch to Google Messages

Samsung is saying goodbye its namesake texting app. According to an end of service announcement published on the tech giant’s ...

Cloudflare’s new CMS is not a WordPress killer, it’s a WordPress alternative

WordPress's massive installed base isn't going anywhere, but many developers and AI agents are not opting for the product for new sites. Will they go for Cloudflare instead?
HealthcareInfoSecurity

Backdooring of JavaScript Library Axios Tied to North Korea

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
SecurityWeek

Axios NPM Package Breached in North Korean Supply Chain Attack

North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.
Nextgov

North Korea-linked hackers suspected in Axios open-source hijack, Google analysts say

The full breadth of this incident is still unclear, but given the popularity of the compromised package, we expect it will ...
The Caledonian-Record

Bitget Gives AI Its Own Trading Account, Advancing Toward an Agent-Native Exchange

Bitget, the world’s largest Universal Exchange (UEX), has introduced a new account structure that allows its AI trading agent, GetClaw, to execute ...
The Hacker News

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

UNC1069 compromised Axios 1.14.1 and 0.30.4 via social engineering, impacting 100M weekly downloads and exposing supply ...
Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...