Wave of security incidents

Axios releases 1.14.1 and 0.30.4 were published with a new dependency plain-crypto-js@4.2.1 that included a postinstall hook delivering a cross‑platform remote‑access trojan for Windows, macOS and Linux, and the maintainer’s npm account was used to publish the poisoned builds on March 31, 2026. (cybernews.com)) Check Point Research documented a March 30, 2026 sandbox escape in ChatGPT’s code‑execution runtime that abused rendered Markdown image URLs to create an outbound channel capable of exfiltrating conversation text and uploaded files to attacker‑controlled servers. (research.checkpoint.com)) Extortion group ShinyHunters publicly claimed to have stolen more than 3 million Salesforce records plus GitHub repositories and AWS objects from Cisco and set an April 3, 2026 deadline in its initial demand post. (infosecbulletin.com)) Anthropic unintentionally published a ~57–60 MB JavaScript source‑map for @anthropic‑ai/claude‑code version 2.1.88 to the npm registry, which researchers reconstructed into roughly 2,300 TypeScript files (reports say the dump ran to hundreds of thousands of lines) revealing internal agent code and unreleased “Capybara” components while Anthropic scrambled to limit exposure. (techspot.com)) All four incidents occurred within a tight 48‑hour window (March 30–31, 2026) and used distinct technical vectors—npm account compromise and postinstall hooks, maliciously crafted sandbox outputs, public source‑map publication, and public extortion claims—creating overlapping response burdens for engineering and security teams. (research.checkpoint.com))