Zack Whittaker13h ago

I wrote some words for TechCrunch about how North Korean hackers took weeks to hack the top developer of one of the web's most popular open-source projects, Axios. Increasingly difficult to defend against well-resourced and persistent hackers when you're a small team or lone developer.

https://techcrunch.com/2026/04/06/north-koreas-hijack-of-one-of-the-webs-most-used-open-source-projects-was-likely-weeks-in-the-making/

North Korea's hijack of one of the web's most used open source projects was likely weeks in the making | TechCrunch

North Korean hackers pushed out malicious updates to a popular open source project by hacking a top developer's computer in a long-running campaign.

TechCrunch
Show threadOfficeplant

@zackwhittaker I find it hard to say difficult to defend, when the dev was pwn'd by a fake teams popup. We can't just be out here clicking the reddest of red flags.

Then again maybe the world needs a refresher on computing self defense if everyone is this fast to click a popup.

6:42pmWeb