axios Compromised on npm - Malicious Versions Drop Remote Access Trojan
Summary
Two malicious axios releases were published via hijacked maintainer accounts, injecting a fake dependency that triggers a cross-platform RAT via postinstall. The article provides IOCs, a detailed attack timeline, and practical remediation steps to secure npm packages, CI/CD pipelines, and network controls.