⭐️axios Compromised on npm - Malicious Versions Drop Remote Access Trojan

Hijacked maintainer account used to publish poisoned axios releases including 1.14.1 and 0.30.4. The attacker injected a hidden dependency that drops a cross platform RAT.

⚠️ Important: If you’re using these versions of axios, roll back to a previous safe version as soon as possible.

Read More

https://www.stepsecurity.io/blog/axios-compromised-on-npm-malicious-versions-drop-remote-access-trojan

#CyberSecurity #SupplyChainAttack #NPM #JavaScript #Axios #OpenSourceSecurity #Malware