Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
Microsoft

Storm-1175 focuses gaze on vulnerable web-facing assets in high-tempo Medusa ransomware operations

The financially motivated cybercriminal threat actor Storm-1175 operates high-velocity ransomware campaigns that weaponize ...
The Hacker News

Silver Fox Expands Asia Cyber Campaign with AtlasCross RAT and Fake Domains

AtlasCross RAT spreads via 11 fake domains registered October 27, 2025, enabling encrypted C2 control and persistence.
Visual Studio Magazine

OpenClaw Gets a Microsoft 365 Champion While VS Code Tooling Stays Nascent

Omar Shahine's new Microsoft role focused on bringing OpenClaw and personal agents to Microsoft 365 adds weight to the workplace-assistant story for the open-source AI framework, even as its current ...
Arabian Post

GitHub channel masks malware stages

GitHub has been drawn into another cyber threat case after researchers uncovered a multi-stage malware campaign using ...
Cybernews

Critical compromise: Axios NPM library with 100M weekly downloads is delivering malware

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...
Arabian Post

Microsoft flags faster Medusa break-ins

Microsoft has warned that a threat actor it tracks as Storm-1175 is exploiting vulnerabilities in internet-facing systems at ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Microsoft fixes Classic Outlook crashes caused by Teams Meeting add-in

Microsoft has resolved a known issue that rendered the classic Outlook email client unusable for users who enabled the ...

Imagine if your Teams or Slack messages automatically turned into secure context for your AI agents — PromptQL built it

Capturing tribal knowledge organically and creating a living metadata store that informs every AI interaction with ...
TribLIVE.com

Minus any Pittsburgh teams, college basketball fans can still find local connections to NCAA Tournament

The 2026 NCAA Tournament field might be bereft of Pittsburgh teams, but the same couldn’t be said of connections to the city. Players and coaches with local roots, plus transfers from Pittsburgh-area ...