Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
The Hacker News

DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials

DeepLoad exploits ClickFix and WMI persistence to steal credentials, enabling stealth reinfection after three days.
Security Boulevard

This fake Windows support website delivers password-stealing malware

A convincing Microsoft lookalike tricks users into downloading malware that steals passwords, payments, and account access.

LinkedIn scanning users’ browser extensions sparks controversy and two lawsuits

LinkedIn is facing two lawsuits over its practice of scanning users’ browsers to determine which extensions they’re running.
Cybernews

Critical compromise: Axios NPM library with 100M weekly downloads is delivering malware

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...
Microsoft

WhatsApp malware campaign delivers VBScript and MSI backdoors

A malware campaign uses WhatsApp messages to deliver VBS scripts that initiate a multi-stage infection chain. The attack ...
CNBC

Anthropic says Claude can now use your computer to finish tasks for you in AI agent push

Anthropic is trialling a feature that lets users send prompts to Claude from a smartphone. Claude will complete the task on its own on a person's computer. Anthropic's product underscores its push ...
Security Boulevard

Axios Front-End Library npm Supply Chain Poisoning Alert

Overview On March 31, NSFOCUS CERT detected that the npm repository of the HTTP client library Axios was poisoned by the supply chain. The attacker bypassed the normal GitHub Actions CI/CD pipeline of ...
GIGAZINE

'Agent Zero' allows you to easily and freely use an AI agent to automatically operate browsers and files, and can also be used with ChatGPT, Claude, and Gemini.

An open source personal AI agent framework called ' Agent Zero ' has been released, which uses the OS as a tool to accomplish tasks by gathering information, executing code, and collaborating with ...
Kim Komando

Software and apps

Gmail. Google Maps. The App Store. Every one was dismissed like an absurd April Fools’ prank. Every one became unavoidable. And every one came with a price tag nobody saw coming.