Threat Intelligence 4 min read
Axios Compromised on npm: North Korea Targets 100 Million Downloads Per Week
On March 30, 2026, the Axios npm package was compromised for 39 minutes via a hijacked maintainer account. The North Korean group UNC1069 deployed the WAVESHAPER.V2 backdoor across Windows, macOS, and Linux.