Supply chain attack hits 300 million-download Axios npm package

A widely used JavaScript package used with hundreds of millions of downloads has been compromised in a new supply chain ...

JavaScript devs beware: this popular NPM package has been compromised by attackers

An extremely popular NPM package used in many JavaScript projects has been compromised and can wreak havoc on your machine if ...

Security boffins scoured the web and found hundreds of valid API keys

Computer security boffins have conducted an analysis of 10 million websites and found almost 2,000 API credentials strewn across 10,000 webpages.

Cloudflare’s new Dynamic Workers ditch containers to run AI agent code 100x faster

Cloudflare says dynamically loaded Workers are priced at $0.002 per unique Worker loaded per day, in addition to standard CPU ...

PolyShell attacks target 56% of all vulnerable Magento stores

Attacks leveraging the 'PolyShell' vulnerability in version 2 of Magento Open Source and Adobe Commerce installations are ...
ITWeb

Agents run amok: Identity lessons from Moltbook’s AI experiment

The launch of Moltbook, a social network for AI agents, will go down as the most intriguing mass agentic AI experiment we’ve ...

Ai2 releases open-source visual AI agent that can take control of web browsers

Allen Institute for AI, a prominent Seattle-based nonprofit research organization working on advancing artificial ...

A major hacking tool has leaked online, putting millions of iPhones at risk. Here’s what you need to know

Here’s what we know, and what you need to know, about Coruna and DarkSword, two advanced iPhone hacking tools discovered by ...
Crypto Briefing

Amjad Masad: AI is democratizing tech, non-coders are gaining an edge in entrepreneurship, and idea generation is the new core skill | AI + a16z

AI-driven tools are reshaping software development, empowering non-coders to thrive in entrepreneurship. The tech industry is ...
Business.Scoop

The GTM Blindspot: Why AI Search Models Are Overlooking Websites Using Tag Manager For Schema

When schema is injected via Google Tag Manager (GTM), it often doesn’t exist in the initial (raw) HTML. It only appears after ...
The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious [email protected] after npm compromise on March 31, 2026, deploying ...
The Caledonian-Record

TurboPass Announces Major Platform Upgrade Introducing Instant Income, Benefits Verification, Insurance Monitoring, and Self-Invite QR code Technology

HELOTES, TX / ACCESS Newswire / March 30, 2026 / TurboPass today announced a comprehensive upgrade to its product suite, effective March 30, 2026. The platform upgrade introduces new verification ...