Meta pauses Mercor partnership after a major data breach raises concerns over exposure of sensitive AI training data.
The widely used Axios HTTP client library, a JavaScript component used by developers, was recently hacked to distribute ...
Meta has indefinitely paused work with $10B AI data startup Mercor after a LiteLLM supply chain attack exposed training ...
Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
Cryptopolitan on MSN
Axios supply chain attack raises risk to crypto wallets
Up to four npm packages on Axios were replaced with malicious versions, in one of the most sophisticated supply chain attacks ...
North Korean hackers used an updated version of a known backdoor to target a popular npm package.
TeamPCP is exploring ways to monetize the secrets harvested during supply chain attacks, with identified ties to the Lapsus$ ...
A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...
Updated: Hijacked maintainer account let attackers slip cross-platform trojan into 100M-downloads-a-week Axios ...
UNC1069 compromised Axios 1.14.1 and 0.30.4 via social engineering, impacting 100M weekly downloads and exposing supply ...
Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results