The maintainer of the Axios npm package has confirmed
that the supply chain compromise was the result of a
highly-targeted social engineering campaign orchestrated by North
Korean threat actors tracked as UNC1069. Maintainer Jason
Saayman said the attackers tailored their social engineering
efforts "specifically to me" by first approaching him under the
guise of the founder of a
Read more https://thehackernews.com/2026/04/unc1069-social-engineering-of-axios.html
