Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

Over 1,700 malicious packages since Jan 2025 fuel cross-ecosystem supply chain attacks, enabling espionage and financial ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

A patch to finally unlock the best VCD player the SEGA Dreamcast ever saw! - DerekPascarella/DreamMovie-UNLOCKED ...

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...

Looking to control Blu-ray playback on your PlayStation 4 without using a PS4 controller? There are definitely some options here -- but whether they work for you depends on what kind of setup you have ...

Anthropic is trialling a feature that lets users send prompts to Claude from a smartphone. Claude will complete the task on its own on a person's computer. Anthropic's product underscores its push ...

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...

It was easier to fix than I thought.

Blake has over a decade of experience writing for the web, with a focus on mobile phones, where he covered the smartphone boom of the 2010s and the broader tech scene. When he's not in front of a ...