US Grapples with Surge in Sophisticated Cyber Intrusions

Supply‑chain attack on Axios

Google has publicly linked a recent compromise of the popular Axios npm package to the North Korean threat group UNC1069. Analysts note that the actors used a malicious version of the library to deliver PowerShell payloads to Windows, a C++ Mach‑O binary to macOS, and a Python backdoor to Linux systems. The incident underscores the continuing reliance on open‑source components and the geopolitical dimension of supply‑chain threats.

Apple pushes iOS 18.7.7 to block DarkSword

Apple expanded its iOS 18.7.7 rollout on April 1, extending automatic updates to additional iPhone and iPad models. The update patches the DarkSword exploit, which silently harvested user data when victims visited compromised websites. Security researchers say the fix is critical as the flaw could affect millions of devices worldwide.

FBI labels Chinese intrusion a “major cyber incident”

Federal investigators have classified a suspected Chinese intrusion into the FBI’s surveillance infrastructure as a major cyber incident. The breach, allegedly achieved by exploiting a commercial ISP’s vendor network, gave attackers access to sensitive intelligence data. Under the Federal Information Security Modernization Act, the agency must brief Congress within seven days, highlighting the incident’s potential national‑security implications.