An attacker compromised the npm account of a lead Axios maintainer on March 30, and used it to publish two malicious versions ...

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

The NPM package for Axios, a popular JavaScript HTTP client library, was briefly compromised this week, possibly by North ...

The widely used Axios HTTP client library, a JavaScript component used by developers, was recently hacked to distribute ...

Axios, a widely used JavaScript HTTP client, was briefly distributed through npm in two malicious versions after a maintainer ...

In-house software built in March with open-source components may include malware placed there by criminals. This isn’t a ...

The most widely used JavaScript HTTP library on the internet — embedded in millions of production applications, relied on by ...

It's unclear how widespread the damage is from the recent axios hack involving North Korean malware, Microsoft Teams, Slack, ...

North Korean hackers used an updated version of a known backdoor to target a popular npm package.

Updated: Hijacked maintainer account let attackers slip cross-platform trojan into 100M-downloads-a-week Axios ...