Dark Reading

Axios Attack Shows How Complex Social Engineering Is Industrialized

The Axios attack has highlighted the sophistication, scalability, and industrialization of social engineering attacks. Late last month, the NPM package of Axios, an extremely popular JavaScript HTTP ...
Yahoo

Axios reveals details of how US and Iran agreed on ceasefire

Add Yahoo as a preferred source to see more of our stories on Google. Axios has learnt that the United States and Iran have agreed on the parameters of a two-week ceasefire through intermediaries ...
Bleeping Computer

Hackers compromise Axios npm package to drop cross-platform malware

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver remote access trojans to Linux, Windows, and macOS systems. One malicious ...

Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a cross-platform RAT. Axios sits in 80% of cloud environments. Huntress confirmed ...
Infosecurity-magazine.com

Hackers Hijack Axios npm Package to Spread RATs

Threat actors have targeted an open source maintainer to hijack one of the most popular npm packages and spread remote access Trojans (RATs). Axios is a JavaScript library downloaded over 100 million ...
Mint

North Korea-linked hackers breach Axios software to target US firms; crypto theft feared: Report

In a major supply-chain attack that could take months to recover from, suspected North Korean hackers compromised a software package used by thousands of US companies, CNN reported on Tuesday.
The Straits Times

US, Iran and mediators make push for 45-day ceasefire, Axios reports

Follow our live coverage here. WASHINGTON - The US, Iran and a group of regional mediators are discussing the terms for a potential 45-day ceasefire that could lead to a permanent end to the war, ...
TechCrunch

North Korea’s hijack of one of the web’s most used open source projects was likely weeks in the making

A North Korean cyberattack that last Monday briefly hijacked one of the most widely used open source projects on the web took weeks to carry out as part of a long-running campaign to target the code’s ...
The Australian Financial Review

North Korea-linked hack hits software that powers online services

Washington | Hackers linked to North Korea breached behind-the-scenes software that runs many common online functions in an effort to steal login information that could enable further cyber operations ...
Hosted on MSN

Axios hack traced to AI deepfake trap

This week’s hack of Axios, a widely used software package, has been traced to an elaborate AI deepfake from suspected North Korean hackers that was convincing enough to trick a developer into ...
Reuters

North Korea-linked hack hits largely invisible software that powers online services

March 31 (Reuters) - Hackers linked to North Korea breached behind-the-scenes software that runs many common online functions in an effort to steal login information that could enable further cyber ...