Attackers stole a long-lived npm access token belonging to the lead maintainer of axios , the most popular HTTP client library in JavaScript, and used it to publish two poisoned versions that install a cross-platform remote access trojan. The malicious releases target macOS, Windows, and Linux. They were live on the npm registry for roughly three hours before removal. Axios gets more than 100 mill...
Attackers stole a long-lived npm access token belonging to the lead maintainer of axios , the most popular HTTP client library in JavaScript, and used it to publish two poisoned versions that install a cross-platform remote access trojan. The malicious releases target macOS, Windows, and Linux. They were live on the npm registry for roughly three hours before removal. Axios gets more than 100 million downloads per week. Wiz reports it sits in approximately 80% of cloud and code environments, touching everything from React front-ends to CI/CD pipelines to serverless functions. Huntress detected the first infections 89 seconds after the malicious package went live and confirmed at least 135 compromised systems among its customers during the exposure window. This is the third major npm supply chain compromise in seven months. Every one exploited maintainer credentials. This time, the target had adopted every defense the security community recommended. One credential, two branches, 39 minutes The attacker took over the npm account of @jasonsaayman, a lead axios maintainer, changed the account email to an anonymous ProtonMail address, and published the poisoned packages through npm ’s command-line interface. That bypassed the project’s GitHub Actions CI/CD pipeline entirely. The attacker never touched the Axios source code. Instead, both release branches received a single new dependency: plain-crypto-js@4.2.1 . No part of the codebase imports it. The package exists solely to run a postinstall script that drops a cross-platform RAT onto the developer's machine. The staging was precise. Eighteen hours before the axios releases, the attacker published a clean version of plain-crypto-js under a separate npm account to build publishing history and dodge new-package scanner alerts. Then came the weaponized 4.2.1. Both release branches hit within 39 minutes. Three platform-specific payloads were pre-built. The malware erases itself after execution and swaps in a clean package.j...
Chipmakers drove a rebound in South Korean stocks as hopes that the Iran war may be nearing an end revived risk appetite. The Kospi Index advanced as much as 6.8%, with Samsung Electronics Co. and SK Hynix Inc. extending gains to more than 10% and 9%, respectively. A surge in futures briefly triggered a halt in program trading by the exchange. The rally follows a four-day slide that had pushed the...
Chipmakers drove a rebound in South Korean stocks as hopes that the Iran war may be nearing an end revived risk appetite. The Kospi Index advanced as much as 6.8%, with Samsung Electronics Co. and SK Hynix Inc. extending gains to more than 10% and 9%, respectively. A surge in futures briefly triggered a halt in program trading by the exchange. The rally follows a four-day slide that had pushed the equity benchmark to the tip of a bear market . A sense of relief swept across global markets after President Donald Trump said that he foresaw the US ending the war on Iran within two to three weeks. His speech on an update about the war is scheduled for Wednesday 9 p.m. Washington time. Korean stocks are rallying due to a “global risk-on shift driven by the rebound in US equities, with a tech-led bounce lifting the Korean market,” said Ha SeokKeun , chief investment officer at Eugene Asset Management. Also in play is a technical rebound from short-term oversold conditions, triggering short covering and bargain buying, he said. The Iran war triggered sharp volatility in Korean equities, which swung from being the world’s top performers through February to the worst-performing market in March.
Shares of enterprise software giant Oracle (NYSE:ORCL) jumped 5% in the afternoon session after the company initiated layoffs as part of a strategic shift to focus on artificial intelligence and cloud services, a move investors viewed positively.
Shares of enterprise software giant Oracle (NYSE:ORCL) jumped 5% in the afternoon session after the company initiated layoffs as part of a strategic shift to focus on artificial intelligence and cloud services, a move investors viewed positively.
Morsa Images/DigitalVision via Getty Images Investment Action I had a buy rating for NIQ Global Intelligence plc ( NIQ ) previously, as I thought the growth outlook was clear and there was a solid path to margins expanding as AI helps to lower the cost base. I remain bullish on NIQ. Margin is expanding faster than I thought, and more importantly, the growth profile is better than I thought. AI is ...
Morsa Images/DigitalVision via Getty Images Investment Action I had a buy rating for NIQ Global Intelligence plc ( NIQ ) previously, as I thought the growth outlook was clear and there was a solid path to margins expanding as AI helps to lower the cost base. I remain bullish on NIQ. Margin is expanding faster than I thought, and more importantly, the growth profile is better than I thought. AI is also proving to be a positive thing for NIQ. The Margin Story Has Turned More Tangible NIQ's ability to expand margin has been a key anchor to my bullish view, and the 25.4% adj. EBITDA margin in Q4 2025 was extremely encouraging. My thesis was that AI would lower processing costs and lift NIQ's margins over time, but it was debatable back then since it was still a "show me story." That has changed today. As noted, the Q4 margin expanded above 25% (which was my FY28 target, by the way), and NIQ delivered 30.2% adj. EBITDA growth in Q4. Let me note that was not due to a one-off tailwind. The margin expansion was due to operating leverage and AI-led productivity gains, both of which I expected. There are great examples to support this. For instance, in Germany, agentic AI is helping to code tens of thousands of products in hours instead of days. It has also helped to cut data costs by ~70% and helped accelerate product launches into new markets. In sales, AI helped sellers to speed up faster access to materials and reduced proposal time and admin work by 40%. And for the most common area that AI can improve, customer support, NIQ also saw manual workload decline by 17%, while self-serve usage went up to 81% through the NIQ service suite. These are significant improvements that translate to huge cost savings, and the benefits, as you can see, are showing up. Core Intelligence segment I also think my view that NIQ is a GDP+ growth story may not be accurate. Looking at the most recent numbers, clearly, NIQ is growing much faster. In Q4, annualized intelligence subscription reven...
Anthropic PBC inadvertently released source code for its popular Claude AI agent, raising questions about its operational security and sending developers on a search for clues about the startup’s plans. “Earlier today, a Claude Code release included some internal source code. No sensitive customer data or credentials were involved or exposed,” an Anthropic spokesperson said in an emailed statement...
Anthropic PBC inadvertently released source code for its popular Claude AI agent, raising questions about its operational security and sending developers on a search for clues about the startup’s plans. “Earlier today, a Claude Code release included some internal source code. No sensitive customer data or credentials were involved or exposed,” an Anthropic spokesperson said in an emailed statement. “This was a release packaging issue caused by human error, not a security breach. We’re rolling out measures to prevent this from happening again.” The leak of basic source code — the second slip-up in just a week — triggered a discussion in the community around new revelations of how Anthropic’s popular coding agent works. Developers said on X they were poring through the details to try and figure out how the startup intended to evolve the platform. Several experts also raised concerns about potential security vulnerabilities in light of the unintended exposure. The leak comes days after Fortune reported that the company accidentally made thousands of files publicly available, including a draft blog post that detailed a powerful upcoming model known internally as both “Mythos” and “Capybara” that presents cybersecurity risks.
The seventh session of the independent inquiry into last year’s fire at Wang Fuk Court – Hong Kong’s deadliest in decades – is under way with the focus turning to ISS EastPoint, the estate’s property management firm. The blaze, which started on November 26 last year and raged through seven of Wang Fuk Court’s eight towers for about 43 hours, killed 168 people and displaced nearly 5,000 residents. ...
The seventh session of the independent inquiry into last year’s fire at Wang Fuk Court – Hong Kong’s deadliest in decades – is under way with the focus turning to ISS EastPoint, the estate’s property management firm. The blaze, which started on November 26 last year and raged through seven of Wang Fuk Court’s eight towers for about 43 hours, killed 168 people and displaced nearly 5,000 residents. ISS clerk Lok Sin-ying, who was stationed at the estate, is to resume testimony on Wednesday morning...