Inside the Axios supply chain compromise
Elastic Security Labs released initial triage and detection rules for the Axios supply-chain compromise. This is a detailed analysis of the RAT and payloads. Introduction…
Author: Cybernoz
Google fixes fourth Chrome zero-day exploited in attacks in 2026
Google released emergency updates to fix another Chrome zero-day vulnerability exploited in attacks, marking the fourth such security flaw patched since the start of the…
TAC Security Reaches 10,000 Clients, Enters Top 5
New York, New York, April 1st, 2026, CyberNewswire TAC Infosec, a global leader in cybersecurity (NSE: TAC), with presence across 100+ countries, announced a historic…
PoC Exploit Code Published for nginx-ui Backup Restore Security Flaw
A critical security flaw in the nginx-ui backup restore mechanism, tracked as CVE-2026-33026, allows attackers to manipulate encrypted backups and execute arbitrary commands. Proof-of-Concept (PoC)…
Egnyte expands Content Cloud with AI Governance and built-in Assistant
Egnyte has announced two major additions to the Egnyte Content Cloud: AI Safeguards, which give organizations granular control over how AI interacts with sensitive content,…
Google Attributes Axios npm Supply Chain Attack to North Korean Group UNC1069
Ravie LakshmananApr 01, 2026Threat Intelligence / Software Security Google has formally attributed the supply chain compromise of the popular Axios npm package to a financially…
North Korea’s Lazarus Group Behind the Axios npm Supply Chain Attack
On Monday, the Axios npm supply chain attack came to light where malicious packages had been inserted into one of JavaScript’s most widely used libraries.…
Mercor Cyberattack Linked To LiteLLM Risks
A recent Mercor cyberattack has brought renewed attention to the risks associated with open-source software dependencies, after the AI recruiting startup confirmed it was impacted…
WA local gov entity lost $350,000 in phishing attack
A Western Australian council paid approximately $350,000 to an unknown third party, following a phishing attack that allowed a threat actor to fraudulently change a…
Axios NPM Package Breached in North Korean Supply Chain Attack
Malicious versions of the highly popular Axios NPM library were distributed to millions in a fresh supply chain attack blamed on North Korean hackers. A…
Free VPNs leak your data while claiming privacy
Free VPNs leak your data while claiming privacy Pierluigi Paganini April 01, 2026 Most free Android VPNs track users, request dangerous permissions, and connect to…
ACSC warns of ongoing targeting of online code repositories
The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC) has issued an updated alert warning of increased targeting of online code repositories, urging Australian organisations…