Peter Girnus

A major supply chain attack compromised the Axios NPM package, affecting millions of users. Malicious versions deployed a RAT, posing serious security risks. Swift action was taken to remove the threats.

A critical vulnerability in NVIDIA's Transformers4Rec library could allow attackers to execute code remotely. This affects users relying on machine learning for recommendation systems. It's crucial to update your software and avoid untrusted files until a patch is available.