It's the first PMQs after a two-week break for the Commons, with the impact of the US-Israel war with Iran likely to feature.

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a cross-platform RAT. Axios sits in 80% of cloud environments. Huntress confirmed ...

At least two ships have visited Iranian ports while two are linked to China. The US previously said it would stop vessels ...

What makes this attack so unsettling is that all the hackers had to do was just steal the password of one of the axios ...

Two CISOs dissect the Axios npm attack, revealing a self-erasing RAT, CI/CD compromise risks and why open-source software ...

The exposure traces back to version 2.1.88 of the @anthropic-ai/claude-code package on npm, which was published with a 59.8MB JavaScript source map intended only for internal ...

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access trojan to potentially millions of developer environments during a three-hour ...

Fake CAPTCHA pages can install the StealC infostealer. Don't paste or run commands; disconnect and change passwords.

'This is unironically a malware nuclear missile.' ...

All the latest from Liverpool's Champions League news conference as Arne Slot and Dominik Szoboszlai speak before their quarter-final second-leg against Paris St-Germain.