Hacker hijacks Axios open-source project, used by millions, to push malware

TL;DR

North Korean Hackers Suspected in Axios Software Tool Breach A hacker has hijacked and modified a popular open-source software development tool to deliver malware that could put millions of developers at risk of being compromised. On Monday, a hacker pushed malicious versions of the widely used JavaScript library called Axios, which developers rely on to allow their software to connect to the internet. The affected library was hosted on npm, a software repository that stores code for open-source projects.