Axios, a tool widely used to develop software applications, was compromised overnight, introducing a vulnerability in a key part of the internet’s plumbing. Hackers were able to breach one of the few accounts that can release new versions of Axios late Monday and published malicious versions of it. Axios, or Axios NPM, is a client that software developers use to send requests to servers – allowing software to connect to the web – and is downloaded about 80 million times every week. Google’s Threat Intelligence Group linked the compromise to a suspected North Korean hacking group. Anyone who has downloaded the malicious version of Axios could then have their own computer – and the data stored on it – stolen by hackers.

Source: The Star April 01, 2026 18:39 UTC