SiliconANGLE

Hackers compromise popular Axios Javascript library with hidden malware

The widely used Axios HTTP client library, a JavaScript component used by developers, was recently hacked to distribute malware via a compromised account. Attackers exploited a hijacked account on npm ...
VentureBeat

Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm access token belonging to the lead maintainer of axios, the most popular HTTP client library in JavaScript, and used it to publish two poisoned versions that install a ...
Hosted on MSN

North Korean hackers hit major software tool

Google and cybersecurity firms have linked a major supply chain attack on the popular open-source Axios JavaScript library to North Korea’s UNC1069 group. The breach allowed malicious code to be ...
Hosted on MSN

Global cyberattacks exploit critical software flaws

A wave of high-impact cyber incidents has struck critical software and infrastructure worldwide, with state-linked groups exploiting supply chains, zero-day flaws, and legacy device vulnerabilities.
Dark Reading

Axios NPM Package Compromised in Precision Attack

The Axios JavaScript NPM package was recently compromised, representing one of the highest impact supply chain attacks against the open source development ecosystem in recent months. Axios is the most ...