Zack Whittaker21h ago

I wrote some words for TechCrunch about how North Korean hackers took weeks to hack the top developer of one of the web's most popular open-source projects, Axios. Increasingly difficult to defend against well-resourced and persistent hackers when you're a small team or lone developer.

https://techcrunch.com/2026/04/06/north-koreas-hijack-of-one-of-the-webs-most-used-open-source-projects-was-likely-weeks-in-the-making/

North Korea's hijack of one of the web's most used open source projects was likely weeks in the making | TechCrunch

North Korean hackers pushed out malicious updates to a popular open source project by hacking a top developer's computer in a long-running campaign.

TechCrunch
Show threadSocket
@zackwhittaker We found this campaign is far more widespread than just Axios - tons of high-impact Node.js package maintainers are actively being targeted right now with the same playbook. Some have gotten frighteningly close to getting compromised: https://socket.dev/blog/attackers-hunting-high-impact-nodejs-maintainers
Attackers Are Hunting High-Impact Node.js Maintainers in a C...

Multiple high-impact npm maintainers confirm they have been targeted in the same social engineering campaign that compromised Axios.

Socket
Apr 6 at 7:12pmWeb