What makes this attack so unsettling is that all the hackers had to do was just steal the password of one of the axios maintainers.
Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
Tom's Hardware on MSN
One of JavaScript's most popular libraries compromised by hackers
An attacker compromised the npm account of a lead Axios maintainer on March 30, and used it to publish two malicious versions ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results