Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
The Hacker News

WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites

WebRTC skimmer exploits PolyShell flaw since March 19, hitting 56.7% stores, enabling stealth data theft bypassing CSP.

Async Adds 100+ AI Models for Video, Image, Avatar and Music Generation

MIDDLETOWN, DE, UNITED STATES, March 24, 2026 /EINPresswire.com/ -- Async, the AI-powered content creation platform ...
The Hacker News

North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware

North Korean hackers exploit VS Code tasks.json auto-run since Dec 2025 to deploy StoatWaffle malware, stealing data and ...

Redblocks Officially Launches AI-Based Large-Scale AI Translation Web Service ‘ForTransAI’

AI Translation Web Service ForTransAi Centered Design, Providing Large-Scale AI Selective Translation and Terminology ...
GitHub

Vectra: local, file‑backed vector database for Node.js

You have a small, mostly static corpus (e.g., a few hundred to a few thousand chunks). You want zero‑infrastructure local retrieval with fast, predictable latency. You’re assembling “infinite few‑shot ...