[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"focus:unc1069-social-engineering-of-axios-maintainer-led-to-npm-supply-chain-attack-mnkcn24d":3},{"item":4},{"id":5,"title":6,"slug":7,"summary":8,"severity":9,"category":10,"cve_ids":11,"affected_products":12,"action_required":14,"article_ids":15,"ioc_summary":17,"source_urls":18,"status":20,"expires_at":21,"created_at":22,"updated_at":23,"articles":24},"1f5aae36-deee-406e-b0e5-5179b567b272","UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack","unc1069-social-engineering-of-axios-maintainer-led-to-npm-supply-chain-attack-mnkcn24d","North Korean actors compromised the Axios npm maintainer through social engineering and published malicious versions (1.14.1 and 0.30.4) containing WAVESHAPER.V2 remote access trojan. Nearly 100 million weekly downloads were exposed. Any system running affected Axios versions has potential RCE.","critical","advisory",[],[13],"Axios","Immediately audit npm package versions in use. Upgrade Axios to 1.6.8 or latest patch version. Check logs and process execution for any suspicious activity correlating to Axios import timestamps between compromise window and package removal.",[16],"1dc3cfe4-9207-44c6-9915-407d663123fa",null,[19],"https:\u002F\u002Fthehackernews.com\u002F2026\u002F04\u002Func1069-social-engineering-of-axios.html","archived","2026-04-06T13:09:13.862+00:00","2026-04-04T13:09:18.654663+00:00","2026-04-06T14:08:05.246264+00:00",[25],{"id":16,"title":6,"url":19}]