Dark Reading

Axios NPM Package Compromised in Precision Attack

The NPM package for Axios, a popular JavaScript HTTP client library, was briefly compromised this week, possibly by North ...
Visual Studio Magazine

TypeScript 6.0 Ships as Final JavaScript-Based Release, Clears Path for Go-Native 7.0

Microsoft released TypeScript 6.0 on March 23, the last version built on the original JavaScript codebase, with three post-RC changes and a wave of deprecations designed to ready codebases for the ...
GovInfoSecurity

Backdooring of JavaScript Library Axios Tied to North Korea

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...
Macworld

Apple urges iPhone users to update as new DarkSword hacking tool lands online

Generally, iOS can be updated in the Settings app by tapping General > Software Update. However, Apple has a separate method ...
Windows Report

Microsoft Launches TypeScript 6.0, Prepares for Go-Based Compiler Rewrite

Microsoft releases TypeScript 6.0 with new defaults, breaking changes, and preparation for a faster Go-based 7.0 ...
Analytics Insight

How to Enable JavaScript in Windows: Easy Step-by-Step Guide

Overview: JavaScript powers essential website features like payments, videos, forms, and menus across modern browsers today.Enabling JavaScript in Windows brows ...

'Hundreds of thousands of stolen secrets could potentially be circulating as a result of ...

It is exactly this backdoor that had Google conclude this was a North Korea-sponsored campaign. GTIG said WAVESHAPER.V2 is an ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
Macworld

DarkSword malware targets iPhones that haven’t been updated yet

The Google Threat Intelligence Group has posted a report about malware that uses six different security vulnerabilities to ...
The Herald Bulletin

Tigers look to stop 3-game losing streak, take on the Diamondbacks

The Detroit Tigers aim to end a three-game skid with a victory over the Arizona Diamondbacks.

Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

Apple expands iOS 18 updates to more iPhones to block DarkSword attacks

Apple has now made it possible for more iPhones still running iOS 18 to receive security updates that protect against the ...