GovInfoSecurity

Backdooring of JavaScript Library Axios Tied to North Korea

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

Popular web-code library poisoned by malicious release

'This is unironically a malware nuclear missile.' ...
CSO Online

Attackers trojanize Axios HTTP library in highest-impact npm supply chain attack

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...
Axios on MSN

North Korean hackers implicated in major supply chain attack

Suspected North Korean hackers are believed to be behind an ongoing compromise of the widely used open-source package Axios, ...

'Hundreds of thousands of stolen secrets could potentially be circulating as a result of ...

It is exactly this backdoor that had Google conclude this was a North Korea-sponsored campaign. GTIG said WAVESHAPER.V2 is an ...
The Japan Times

North Korea hackers suspected of attack on widely used software tool

Hackers linked to North Korea are suspected of an ambitious attack on an inconspicuous software package, cybersecurity ...
Cybernews

North Korean hackers behind axios critical supply chain attack, Google says

According to Google researchers, a North Korean group tracked as UNC1069 has previously targeted cryptocurrency and ...
Nextgov

North Korea-linked hackers suspected in Axios open-source hijack, Google analysts say

The full breadth of this incident is still unclear, but given the popularity of the compromised package, we expect it will ...

Trump unveils renderings of planned presidential library in Miami

The skyscraper would be topped with a red, white and blue spire.
Security Boulevard

Axios Front-End Library npm Supply Chain Poisoning Alert

Overview On March 31, NSFOCUS CERT detected that the npm repository of the HTTP client library Axios was poisoned by the supply chain. The attacker bypassed the normal GitHub Actions CI/CD pipeline of ...
Infosecurity Magazine

Hackers Hijack Axios npm Package to Spread RATs

Threat actors hijacked the popular npm package axios to spread RAT malware after compromising an open‑source maintainer’s ...

North Korea hackers suspected of attack on widely used software tool Axios

North Korea-linked hackers have launched a significant cyberattack on Axios, a popular JavaScript library, raising concerns ...