THREATNOIR
Subscribe
Back to Feed
Supply ChainApr 2, 2026

How SentinelOne’s AI-powered EDR stops the Axios NPM supply chain attack autonomously and at mach...

SentinelOne's AI-powered EDR detected Axios NPM supply chain attack within 89 seconds of suspected North Korean

Read at source

Summary

A suspected North Korean attack exploited the Axios NPM package, infecting systems within 89 seconds of going live. SentinelOne's AI-powered endpoint detection and response (EDR) platform autonomously detected and stopped the attack at machine speed, demonstrating the effectiveness of automated threat response against rapid supply chain compromises. The incident highlights vulnerabilities in popular open-source dependencies and the need for real-time detection capabilities.

Indicators of Compromise

  • malware — Axios NPM package (compromised)

Entities

SentinelOne (vendor)SentinelOne AI-powered EDR (product)Axios (product)npm (technology)North Korea (suspected) (threat_actor)Axios NPM supply chain attack (campaign)