The maintainers of the popular Axios HTTP client have published a detailed post-mortem describing how one of its developers ...
A sophisticated social engineering attack, disguised as a Microsoft Teams meeting, tricked the Axios lead maintainer into ...
UNC1069 compromised Axios 1.14.1 and 0.30.4 via social engineering, impacting 100M weekly downloads and exposing supply ...
Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
'This is unironically a malware nuclear missile.' ...
North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.
Axios functions as pre-built software that a developer can easily incorporate into a JavaScript project. However, a hacker ...
Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...
A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...
Two versions of the widely used JavaScript library axios were maliciously published on npm on March 31, 2026. A hijacked ...
The popular JavaScript HTTP client Axios has been compromised in a supply chain attack, exposing projects to malware through ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results