Advertisement
SU
HIGH
Supply Chain
Axios npm Supply Chain Attack: Malicious Payloads and Mitigation
Axios npm versions 1.14.1 and 0.30.4 compromised via a malicious dependency injecting remote access trojans. Learn how to detect and remediate this threat.
Runtime Rebel Intel
3 min read·Apr 21, 2026
SU
HIGH
Supply Chain
North Korean Social Engineering Targets Node.js Maintainers
North Korean threat actors use social engineering and malicious npm packages to target high-profile Node.js maintainers in a sophisticated supply chain campaign.
Runtime Rebel Intel
3 min read·Apr 6, 2026