Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...

Build your first fully functional, Java-based AI agent using familiar Spring conventions and built-in tools from Spring AI.

UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were receiving unauthorized patch updates, all containing the same hidden ...

EM, biochemical, and cell-based assays to examine how Gβγ interacts with and potentiates PLCβ3. The authors present evidence for multiple Gβγ interaction surfaces and argue that Gβγ primarily enhances ...

Updated: Hijacked maintainer account let attackers slip cross-platform trojan into 100M-downloads-a-week Axios ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to have stolen data from hundreds of thousands of ...

PM This week in cybersecurity: botnets, RCE flaws, AI-driven attacks, stealers, and more. Fast, no-fluff roundup.

An incident of LinkedIn malware means jobseekers and employers need to take more care with their applications and ...

They have a certain charm, for sure.

Different impacts of the same molecular and circuit mechanisms on sleep–wakefulness control in early-life juveniles and adults.

Search by keyword, or filter by publication category, topic, region, country or date. For law and policy resources please visit Refworld, UNHCR's dedicated database for case law, legislation and ...