In a significant security incident that has sent shockwaves through the developer community, a North Korean state-sponsored hacking group has successfully compromised the popular Axios NPM package.

A supply-chain attack on the widely used Axios JavaScript library has raised fresh concern over the fragility of open-source software distribution after attackers slipped malicious code into two ...

Elastic Security Labs quickly spotted the unfolding supply-chain attack that backdoored the popular JavaScript library Axios, ...

The Cybersecurity and Infrastructure Security Agency (CISA) has released an alert to provide guidance in response to the ...

GHENT, Belgium, April 20, 2026 (GLOBE NEWSWIRE) -- Aikido Security today launched Aikido Endpoint, a lightweight security agent that protects developer devices against software supply chain attacks by ...

The supply chain attack on third-party library Axios has forced OpenAI to revoke its code-signing certificate and require ...

OpenAI is one of many organizations affected by the recent Axios supply chain attack attributed to North Korean hackers.

OpenAI revoked its macOS signing certificate after a malicious Axios dependency incident on March 31, 2026, preventing ...

Add Yahoo as a preferred source to see more of our stories on Google. OpenAI confirms security incident means macOS users must update all apps now. AFP via Getty Images ChatGPT developer OpenAI has ...

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. OpenAI confirms security incident means macOS users must update all apps now. ChatGPT ...

Supply chain attacks have become a favored method for cybercriminals, allowing them to infiltrate systems through trusted software. The incidents involving Trivy and Axios showcase not only the scale ...

Hackers linked to North Korea compromised the widely used Axios npm package by tricking a maintainer into installing malware disguised as a Microsoft Teams error fix, turning one of the most popular ...