The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
Computerworld

Has your company been infiltrated by the Shady Rat hack?

When McAfee released its Operation Shady Rat hacking report earlier this week, it didn’t name all of the organizations it thought could have been hacked as part of a large, five-year ongoing campaign.