Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
The Hacker News

DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials

DeepLoad exploits ClickFix and WMI persistence to steal credentials, enabling stealth reinfection after three days.
tech2geek

5 PowerShell Scripts That Transform Windows — Automate, Clean, and Take Back Control

For many Windows users, PowerShell is just a strange black window you open once in a while to paste a command from a forum. In reality, PowerShell is one of the most powerful tools built into Windows.
Forbes

‘Users Must Choose’—Microsoft Confirms New Windows Security Feature

Windows security updates tend to conjure thoughts of operating system vulnerabilities, including zero-days, being patched or even unexpected failures with serious consequences. This security update, ...
Windows Report

How To Convert PowerShell To EXE On Windows Using PS2EXE

PS2EXE installs through the PowerShell Gallery, so you can set it up quickly. Open Windows Terminal or PowerShell as administrator. Run the module installation command: Install-Module -Name PS2EXE ...
Infosecurity-magazine.com

Blitz Spear Phishing Campaign Targets NGOs Supporting Ukraine

Aid groups involved in Ukraine’s war relief efforts and Ukrainian regional government administrations were targeted by a single-day spear phishing attack, a SentinelOne report has revealed. The ...