Two different attackers poisoned popular open source tools - and showed us the future of supply chain compromise

Although executed by different attackers – Axios by North Korean-linked goons, and Trivy et al. by a loosely knit band of ...

Critics fear Alberta’s plan to curb access to graphic material threatens privacy of library users

Library directors question what will happen when authorities are ordered to check out what someone is checking out ...

State Library of Ohio to relocate as Italian Village site eyed for apartment project

The State Library of Ohio will close its Italian Village location as it prepares to relocate ahead of a redevelopment project ...
Morning Overview on MSN

North Korea-linked hackers used fake Teams updates to hit Axios npm

Hackers linked to North Korea compromised the widely used Axios npm package by tricking a maintainer into installing malware ...

How North Korean hackers used fake Teams updates to compromise the Axios library

It's unclear how widespread the damage is from the recent axios hack involving North Korean malware, Microsoft Teams, Slack, ...
LGBTQ Nation

Support skyrockets for librarian who was fired for refusing to hide LGBTQ+ books from kids

LGBTQ+ advocates and allies are rallying around Luanne James, a Tennessee librarian who was fired for refusing to hide LGBTQ+ books from children. It has only been one week since the board voted to ...

'Hundreds of thousands of stolen secrets could potentially be circulating as a result of these recent attacks': Google says North Korean hackers behind majo…

Google Threat Intelligence Group warns of active supply chain attack on npm’s Axios library Malicious dependency ...
Computing

Hackers compromise Axios, one of the most widely used software libraries

Axios is published and maintained on npm, the default package registry for JavaScript and Node.js projects. It is used to ...