The Axios team disclosed a sophisticated supply chain attack where attackers used highly personalized social engineering to compromise a maintainer. They impersonated a company founder, lured the developer into a fake Slack workspace, and tricked them into installing a Remote Access Trojan (RAT) during a Teams meeting. This led to stolen credentials and the distribution of a malicious package.
Background
Supply chain attacks target software dependencies and development tools to inject malicious code into widely used packages. Social engineering is increasingly used to compromise developer accounts and infrastructure.
- Source
- Simon Willison
- Published
- Apr 3, 2026 at 09:54 PM
- Score
- 8.0 / 10