North Korean hackers have compromised the widely-used Axios open source project, injecting malware into a tool downloaded tens of millions of times weekly. This represents a significant supply chain attack targeting developers and organizations globally.
Background
Axios is a popular JavaScript library used for making HTTP requests, commonly integrated into web applications worldwide. Supply chain attacks targeting open source dependencies have become increasingly common security threats.
- Source
- TechCrunch
- Published
- Apr 1, 2026 at 12:01 AM
- Score
- 8.0 / 10