The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...
The Hacker News

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.

FDA Approves New GLP-1 Weight Loss Pill—What To Know And How To Get It

The U.S. Food and Drug Administration on Wednesday approved a second oral GLP-1 medication, giving adults eligible for weight ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
AHA/ASA Journals

Designing Medically Tailored Meal Interventions: The Food as Medicine for Families (FAME-F) Factorial Randomized Clinical Trial

BACKGROUND: Medically tailored meals (MTM) have unanswered implementation questions. Providing MTM for a specific individual, ...