IBM has become the first company to settle with the US government under the Trump administration's Civil Rights Fraud Initiative, a program aimed at ensuring diversity programs don't cross a line and ...

A routine software update for Anthropic's Claude Code tool accidentally leaked its entire source code, sparking rapid community response. Within hours, a developer rewrote the tool in Python and then ...

After a month and a half of spiraling conflict in the Middle East, the United States and Iran agreed to a two-week ceasefire ...

Over 1,700 malicious packages since Jan 2025 fuel cross-ecosystem supply chain attacks, enabling espionage and financial ...

Oracle is cutting up to 12,000 jobs in India as it pivots to AI, with layoffs impacting nearly a quarter of its largest ...

Google links Axios npm supply chain attack to UNC1069 after trojanized versions 1.14.1 and 0.30.4 spread WAVESHAPER.V2, impacting multiple OS.

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

An incident of LinkedIn malware means jobseekers and employers need to take more care with their applications and ...

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how quickly a compromised package can propagate through the ecosystem.

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...