D.C. Council advances single-stair building legislation for midsized multifamily buildings

The D.C. Council has advanced a so-called “single-stair” policy that lawmakers and advocates say would facilitate housing ...
CSO Online

Attackers trojanize Axios HTTP library in highest-impact npm supply chain attack

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...

Why the axios supply chain attack should have Apple worried

Critical digital infrastructure is increasingly maintained by under‑resourced individuals, yet exploits have economic and ...
The Caledonian-Record

New Definium Therapeutics Study Published in the Journal of Mood and Anxiety Disorders Reveals Increasing Prevalence and Burden of Generalized Anxiety Disorder in the United States

Definium Therapeutics, Inc. (“Definium” or the “Company”), announced results from a retrospective, longitudinal study published in the Journal of Mood and Anxiety Disorders examining the real-world ...
The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
The Caledonian-Record

MoneyFlare Unveils Next-Generation AI Trading Bot to Power the Future of No-Code Crypto Trading

MoneyFlare has officially announced the launch of its fully automated AI crypto trading bot, marking a significant milestone in the evolution ...
SecurityWeek

Russian APT Exploits Zimbra Vulnerability Against Ukraine

Russia-linked APT28 has exploited a high-severity XSS vulnerability in Zimbra in attacks against Ukrainian entities.
The Hacker News

DarkSword iOS Exploit Kit Uses 6 Flaws, 3 Zero-Days for Full Device Takeover

DarkSword exploit targets iOS 18.4–18.7 using 6 flaws and 3 zero-days, enabling rapid data theft from iPhones across multiple ...
GitHub

Microsoft Teams task module

A task module allows you to create modal popup experiences in your Teams application. Inside the popup, you can run your own custom HTML/JavaScript code, show an <iframe>-based widget such as a ...

Critical Chrome Security Flaws Threaten Billions of Users Worldwide

Google patches two actively exploited Chrome vulnerabilities that could allow attackers to crash browsers or run malicious ...

Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible ...