Get the latest tech news

Axios compromised on NPM – Malicious versions drop remote access trojan

Hijacked maintainer account used to publish poisoned axios releases including 1.14.1 and 0.30.4. The attacker injected a hidden dependency that drops a cross platform RAT. We are actively investigating and will update this post with a full technical analysis.

None

Get the Android app

Or read this on Hacker News

Related news:

It is "absolutely" possible that the U.S. and China reach an agreement on rules governing the future use of artificial intelligence, former Deputy Defense Secretary Kathleen Hicks told Axios.

Qite.js – Frontend framework for people who hate React and love HTML

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

« Microsoft says Copilot ad in GitHub pull request was a bug, not an advertisement

Artemis II is not safe to fly »