The Axios HTTP client, which is very popular and available on the npm registry, has been hit by a serious and complex supply chain attack This article explores axios 30. . A hacked maintainer account was the source of the attack. Developers should do the following right away: If you're using axios 1.x, you should downgrade to axios@1.14.0.

If you're using axios 0.x+1, you should downgrade to axios@0.30.3. Change all passwords, API keys, and secrets on any machine that is open to the public. Check network logs for connections going out to sfrclak[. ]com or 142.11.206.73.

In Google, make ZeroOwl your preferred source. Call the National Suicide Prevention Lifeline at 1-800-273-8255 or go to http://www.suicidepreventionlifeline.org/ for private help. If you need help with suicide issues, you can call the Samaritans at 08457 90 90 90 or go to a local Samaritans branch. For more information, visit www.samaritans.org.

If you need help in the U.S., call the national suicide prevention Lifeline at 1-877-903-7255 or visit http://www.samaritans.com/. Call 0800-902-7263 to get help in the UK from the National Crime Agency. If you need help with traveling abroad, you can call 08457 909090 or the National Security Agency's 24-hour helpline at +1 (800) 709090.

Go to www.csa.org/cybersecurity for more tips on how to keep your computer safe. Visit www.acs.gov/tech/security to learn how to help your organization.