highMalware & Threats
North Korean Actors Target Axios npm Maintainer with Fake Microsoft Teams Fix
The popular Axios HTTP client library was targeted by North Korean threat actors who used a fake Microsoft Teams troubleshooting scenario to socially engineer one of its maintainers. The maintainers published a detailed post-mortem of the attack campaign.
BleepingComputer
social-engineeringsupply-chainnpm