Hijacked maintainer account used to publish poisoned axios releases including 1.14.1 and 0.30.4. The attacker injected a hidden dependency that drops a cross platform RAT. We are actively investigating and will update this post with a full technical analysis.
axios Compromised on npm - Malicious Versions Drop Remote Access Trojan - StepSecurity
Submitted 2 months ago by limerod@reddthat.com to techsploits@reddthat.com
limerod@reddthat.com 2 months ago
If you were compromised follow the recovery steps mentioned in the article to reduce the damage.
Here’s the hacker news discussion: news.ycombinator.com/item?id=47582220