Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

H33 Launches HICS for Free: The First Trust-less Software Scoring Tool with Post Quantum Cryptographic Proof

Free cryptographically verified code quality scoring for software procurement. The best software wins. Not the best ...

Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...

Google fixes fourth Chrome zero-day exploited in attacks in 2026

In 2025, Google fixed a total of eight zero-days exploited in the wild, many of which were discovered and reported by ...

Jan. 6 rioter pardoned by Trump gets prison sentence for possessing 'enormous child pornography collection'

Daniel Tocci's attorney had previously argued that the case should be dismissed because “all the evidence" stemmed from his ...

Spotify seeks $300M from Anna’s Archive, which ignores all court proceedings

Spotify and major record labels are seeking a $322 million default judgment from Anna’s Archive, which hasn’t responded to ...