Technical Advisory: Axios npm Supply Chain Attack – Cross-Platform RAT Deployed via Compromised Maintainer Account
| Active RAT | Malicious npm versions removed | Assess all systems that ran npm install during exposure window...
versions
Axios Hijacked: npm Account Takeover Deploys Cross-Platform RAT to Millions
On March 31, 2026, two malicious versions of Axios – the JavaScript HTTP client with over 83 million weekly...
Poisoned Axios: npm Account Takeover, 50 Million Downloads, and a RAT That Vanishes After Install
On March 30-31, 2026, threat actors published two malicious versions of the popular HTTP library axios (versions 1.14.1 and...
When Your Scanner Becomes the Weapon: From Trivy to LiteLLM
On March 24, 2026, two malicious versions of LiteLLM – the popular AI/LLM proxy gateway present in roughly 36%...
Malicious LiteLLM versions linked to TeamPCP supply chain attack
Malicious LiteLLM versions linked to TeamPCP supply chain attack Pierluigi Paganini March 25, 2026 TeamPCP backdoored LiteLLM v1.82.7–1.82.8, likely via...
Researchers warn of unpatched, critical Telnetd flaw affecting all versions
Researchers warn of unpatched, critical Telnetd flaw affecting all versions Pierluigi Paganini March 18, 2026 CVE-2026-32746 is a critical flaw...
Apple issues emergency fixes for Coruna flaws in older iOS versions
Apple issues emergency fixes for Coruna flaws in older iOS versions Pierluigi Paganini March 12, 2026 Apple released iOS 16.7.15...
Creating unstructured data pipelines for retrieval augmented generation
Our initial release of Tonic Textual focused on generating redacted versions of unstructured text and image files. This is...
