It's unclear how widespread the damage is from the recent axios hack involving North Korean malware, Microsoft Teams, Slack, ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

2026年3月31日，两个恶意版本的流行JavaScript HTTP库Axios被短暂发布到npm仓库。这两个版本均包含隐藏依赖项，可在macOS、Windows和Linux系统上安装远程访问木马（RAT）。此次攻击并未利用Axios代码本身的漏洞 ...

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...

Spread the loveIn a significant security incident that has sent shockwaves through the developer community, a North Korean state-sponsored hacking group has successfully compromised the popular Axios ...

开发者广泛使用的Axios HTTP客户端库这一JavaScript组件最近遭到黑客攻击，通过被入侵的账户分发恶意软件。

SmartCustomer reports Gen Z may be vulnerable to tax scams, with inflated confidence and reliance on tech leading to a high ...

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

LinkedIn runs a hidden JavaScript script called Spectroscopy that silently probes over 6,000 Chrome extensions and collects ...

North Korean hackers compromised the widely used Axios JavaScript library to infiltrate US companies and steal cryptocurrency ...

North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.