Wordmark2d ago

#JavaScript library used to make asynchronous HTTP requests from browsers and #Nodejs environments

#cyber #axios #javascript #SUCKS !!!!
STOP USING #JAVASCRIPT !!!!
https://thehackernews.com/2026/03/axios-supply-chain-attack-pushes-cross.html

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

Axios 1.14.1 and 0.30.4 injected malicious [email protected] after npm compromise on March 31, 2026, deploying cross-platform RAT malware.

The Hacker News
Show threadWordmark
possibly affected: #React
#Vuejs applications (including Vue CLI projects)
#äNuxtjs projects (server-rendered Vue apps and examples)
#Nextjs example apps and tutorials (React SSR/static apps often use Axios)
React Native apps (mobile apps fetching APIs)
#Electron desktop apps (desktop JS apps making HTTP calls)
possibly #SignalDesktop
Apr 4 at 9:07pmWeb