GovInfoSecurity

Backdooring of JavaScript Library Axios Tied to North Korea

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

Popular web-code library poisoned by malicious release

'This is unironically a malware nuclear missile.' ...
Security Boulevard

Axios supply chain attack chops away at npm trust

Developers using the axios package from npm may have downloaded a malicous version that drops a Remote Access Trojan ...
Computing

Hackers compromise Axios, one of the most widely used software libraries

Axios is published and maintained on npm, the default package registry for JavaScript and Node.js projects. It is used to ...
Startup Fortune

North Korean Hackers Weaponize Axios Software to Target US Crypto Firms

North Korean hackers compromised the widely used Axios JavaScript library to infiltrate US companies and steal cryptocurrency ...

Cambodia: Alleged cyber scam boss extradited to China

Authorities say Li Xiong was arrested in Cambodia and deported at the request of Chinese authorities. He is linked to an accused scam center kingpin who was extradited in January.
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Watch: World Men's Curling Championship - Scotland v Switzerland

Find a curling club or rink near you by visiting the Try Curling website.