axios compromised on npm: maintainer account hijacked, RAT deployed
Malicious axios versions 1.14.1 and 0.30.4 were published via a hijacked maintainer account. A hidden dependency deploys a cross-platform RAT. Check if you are affected and remediate now. Category…
Read the full articleYou might also wanna read
Compromised axios npm package delivers cross-platform RAT
An attacker hijacked an axios maintainer's npm account to publish malicious releases that deliver a cross-platform RAT.

Axios npm Package Compromised: Supply Chain Attack Delivers Cross-Platform RAT
Meta description: Malicious versions of the Axios npm package (1.14.1 and 0.30.4) were published via a compromised maintainer account, injec
axios npm Package Compromised: Versions 1.14.1 and 0.30.4 Contain RAT Malware
TL;DR On March 30–31, 2026, axios versions 1.14.1 and 0.30.4 were compromised on npm with...
cstu.io·26d agoaxios Compromised: npm Supply Chain Attack via Dependency Injection
axios 1.14.1 was published to npm via a compromised maintainer account, injecting a trojanized dependency that executes a multi-platform rev
Axios attack: How a compromised npm package delivered RAT malware
A malicious Axios npm release compromised over 10,000 systems in hours. Learn how the attack worked, the IoCs, and how to prevent supply cha
Axios npm Supply Chain Attack: What AI Engineers Must Know
The March 2026 Axios npm attack deployed RATs on developer machines via Claude Code and other tools. Complete detection, remediation, and pr

Comments
Sign in to join the conversation.
No comments yet. Be the first.