SecurityWeek

Axios NPM Package Breached in North Korean Supply Chain Attack

North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.
Cybernews

Critical compromise: Axios NPM library with 100M weekly downloads is delivering malware

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...

OpenAI denies user data breach after Axios developer tool compromise; asks macOS users to update apps

OpenAI says no user data or systems were compromised after an Axios-related incident, but macOS users must update apps as the ...

OpenAI rotates macOS certs after Axios attack hit code-signing workflow

OpenAI is rotating potentially exposed macOS code-signing certificates after a GitHub Actions workflow executed a malicious ...
Devdiscourse

OpenAI Strengthens Security After Axios Library Compromise

OpenAI discovered a security breach linked to Axios, a third-party developer tool. The company reassured that user data and ...
The News International

OpenAI reports security issue in third-party tool Axios, assures user data protection

OpenAI has recently identified a security flaw in a third-party developer tool called Axios and taken necessary steps to ...

Supply chain attack hits Axios npm releases, users urged to rotate keys

Security firm Socket advised developers to check dependencies for affected Axios versions and remove or roll back compromised ...
Analytics Insight

Axios Supply Chain Attack Exposes Crypto Wallets to Hidden Malware Risk

Axios, a widely used JavaScript HTTP client, was briefly distributed through npm in two malicious versions after a maintainer ...

The Axios Hack: How a single compromised account put millions of developers at risk

What makes this attack so unsettling is that all the hackers had to do was just steal the password of one of the axios ...

OpenAI identifies security issue involving third-party tool, says user data was not accessed

April 10 (Reuters) - OpenAI said on Friday it had identified a security issue involving a third-party developer tool called ...