Threat Digest

Elastic Security Labs diagram of UNC1069's Axios NPM supply chain attack payload flow

North Korea's UNC1069 Turns Axios NPM into Cross-Platform Trapdoor

Google's just named North Korea's UNC1069 as the crew behind the Axios npm hijack. It's a slick supply chain play, dropping cross-platform backdoors on devs worldwide.

4 min read 5 hours ago

Alert graphic showing compromised Axios NPM package with North Korean flag overlay

Vulnerabilities & CVEs

Axios NPM Breach: North Korea's Precision Strike on JS Devs

What if your most trusted HTTP client just became a backdoor? The Axios NPM package was compromised this week in a surgical hit, with signs pointing to North Korean actors.

3 min read 5 hours ago

#north korea hackers

North Korea's UNC1069 Turns Axios NPM into Cross-Platform Trapdoor

Axios NPM Breach: North Korea's Precision Strike on JS Devs

Stay in the loop