The Hindu

The Axios Hack: How a single compromised account put millions of developers at risk

If you’ve ever built a website, run a startup, or shipped software of any kind in the last decade, there’s a good chance you’ve used axios. It’s one of those software tools that powers enormous chunks ...
Dark Reading

Axios NPM Package Compromised in Precision Attack

The Axios JavaScript NPM package was recently compromised, representing one of the highest impact supply chain attacks against the open source development ecosystem in recent months. Axios is the most ...
TechCrunch

North Korean hackers blamed for hijacking popular Axios open source project to spread malware

A suspected North Korean hacker has hijacked and modified a popular open source software development tool to deliver malware that could put millions of developers at risk of being compromised. On ...
Bleeping Computer

Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver remote access trojans to Linux, Windows, and macOS systems. One malicious ...
Yahoo

Axios reveals details of how US and Iran agreed on ceasefire

Add Yahoo as a preferred source to see more of our stories on Google. Axios has learnt that the United States and Iran have agreed on the parameters of a two-week ceasefire through intermediaries ...
Wall Street Journal

The Axios Hack: What to Know

A breach Tuesday of the widely used Axios software library is the latest in a string of incidents exposing risks in the systems that underpin how modern software is built. Developers use Axios to ...
Gulf News

Techie Tonic: Two CISOs warn Axios breach changes supply chain trust model

In the wake of a critical supply chain attack targeting the widely used Axios JavaScript library, like leading analyst from NST Cyber pointed out, Many CXOs community chief information security ...
Investing

US-Iran mediators push for potential 45-day ceasefire, Axios reports

Get real-time updates on market-moving news with InvestingPro subscription Axios said the proposal under discussion would involve a first phase of a 45-day ceasefire, during which negotiators would ...
HHS

Backdooring of JavaScript Library Axios Tied to North Korea

A supply-chain attack affecting Axios, the popular JavaScript library, traced back to DPRK threat activity. (Image: Shutterstock) A supply-chain attack that compromised versions of Axios to distribute ...
Mint

North Korea-linked hackers breach Axios software to target US firms; crypto theft feared: Report

In a major supply-chain attack that could take months to recover from, suspected North Korean hackers compromised a software package used by thousands of US companies, CNN reported on Tuesday.
Hosted on MSN

Supply chain attack hits Axios npm releases, users urged to rotate keys

Update March 31, 2026, 1:28 pm UTC: This article has been updated to add comments from Abdelfattah Ibrahim, senior offensive security engineer at Hacken. Two malicious Axios npm releases have prompted ...