The Axios supply chain attack used individually targeted social engineering
cmitsakis
36 points
8 comments
April 03, 2026
Related Discussions
Found 5 related stories in 44.2ms across 3,471 title embeddings via pgvector HNSW
- Active Supply Chain Attack on axios 1.14.1 lemax · 16 pts · March 31, 2026 · 69% similar
- Axios compromised on NPM – Malicious versions drop remote access trojan mtud · 373 pts · March 31, 2026 · 61% similar
- Supply-chain attack using invisible code hits GitHub and other repositories tannhaeuser · 14 pts · March 15, 2026 · 59% similar
- Google attributes Axios hack to North Korea ariporad · 11 pts · March 31, 2026 · 58% similar
- Post Mortem: axios NPM supply chain compromise Kyro38 · 71 pts · April 03, 2026 · 58% similar
Discussion Highlights (3 comments)
jruohonen
"the meeting said something on my system was out of date. i installed the missing item as i presumed it was something to do with teams, and this was the RAT." Oh dear.
PufPufPuf
I wonder if I would have been saved by my absolute disdain for installing anything Microsoft Teams-related on my computer. The web version works fine , thanks. Up to usual Microsoft Teams standards
skrtskrt
As a general rule I install none of these web conferencing things on my machine. Either the browser version works fine, as Google Meet, Zoom, Teams and even WebEx all do, or this is not a meeting I need to be on.