HealthcareInfoSecurity

Backdooring of JavaScript Library Axios Tied to North Korea

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...
週刊アスキー on MSN

OpenAI、Macアプリ緊急更新呼びかけ Axios攻撃で警告

OpenAIは4月11日、macOS向け自社アプリのセキュリティ証明書を更新すると発表。ChatGPT DesktopやCodex App、Codex CLI、Atlasで、すべてのユーザーに最新版への更新を呼びかけた。

Hackers compromise popular Axios Javascript library with hidden malware

The widely used Axios HTTP client library, a JavaScript component used by developers, was recently hacked to distribute ...
Tom's Hardware on MSN

One of JavaScript's most popular libraries compromised by hackers

An attacker compromised the npm account of a lead Axios maintainer on March 30, and used it to publish two malicious versions ...
Cybernews

Critical compromise: Axios NPM library with 100M weekly downloads is delivering malware

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...

ダウンロード数1億超、人気ライブラリ「Axios」を襲ったサプライ ...

オープンソースのJavaScript ...

OpenAI flags third-party data issue — all macOS users should update now

OpenAI rotated macOS code‑signing certificate after Axios supply chain breach Malicious Axios 1.14.1 pulled into app‑signing ...
Developer Tech

Axios npm attack causes JavaScript supply chain chaos

Security teams are grappling with a major supply chain attack on Axios, a popular JavaScript library with over 100 million ...
Forbes JAPAN

Mac版OpenAI製アプリでセキュリティインシデント発生──5月8日まで ...

ChatGPTの開発元であるOpenAIは、米国時間3月31日に発生したサードパーティのセキュリティインシデントを受け、macOS向けセキュリティ証明書の失効と更新を実施したことを確認した。これにより、すべてのMacユーザーはアプリの更新が ...

Hackers slipped a trojan into the code library behind most of the internet. Your team is ...

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...