North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.

Two CISOs dissect the Axios npm attack, revealing a self-erasing RAT, CI/CD compromise risks and why open-source software ...

Hackers infiltrated Axios maintainers using fake Slack channels and Teams calls, then published infected packages.

In early April 2025, security researchers confirmed that North Korean state-sponsored hackers had successfully compromised the Axios HTTP library. It is one ...

Vulnerability attacks rose 56% in 2025. Explore 46 statistics on CVE disclosure, exploitation patterns, and industry impact to guide your 2026 security strategy. The post 46 Vulnerability Statistics ...

OpenAI is asking Mac users to update ChatGPT, Codex, Atlas, and Codex CLI after a security issue involving Axios and macOS ...

Google’s handling of API keys has come under fresh scrutiny after security researchers said Android applications are exposing ...

Security firm Socket advised developers to check dependencies for affected Axios versions and remove or roll back compromised ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

OpenAI revoked its macOS signing certificate after a malicious Axios dependency incident on March 31, 2026, preventing ...

Phishing surge, LinkedIn tracking claims, spyware use, and rising stealers expose growing abuse of trusted systems.

OpenAI discovered a security breach linked to Axios, a third-party developer tool. The company reassured that user data and ...