> TritonInfoSec News
Home / Apr 04, 2026 / Story
0
#5 The Hacker News general April 03, 2026 at 11:04 UTC

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

By [email protected] (The Hacker News)

AI Summary

North Korean threat actors from UNC1069 compromised the Axios npm package through targeted social engineering of maintainer Jason Saayman. The supply chain attack demonstrates sophisticated DPRK capabilities to infiltrate widely-used JavaScript libraries through personalized social manipulation campaigns.

Read full article → https://thehackernews.com/2026/04/unc1069-social-e…

Relevance score: 85.0/100

# More from April 04

  1. 1
    LinkedIn secretely scans for 6,000+ Chrome extensions, collects data BleepingComputer
  2. 2
    CISA gives agencies two weeks to patch video conferencing bug exploited by Chinese hackers The Record
  3. 3
    North Korean Hackers Drain $285 Million From Drift in 10 Seconds SecurityWeek
  4. 4
    EU cyber agency attributes major data breach to TeamPCP hacking group The Record
  5. 6
    Critical ShareFile Flaws Lead to Unauthenticated RCE SecurityWeek
  6. 7
    China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing The Hacker News
  7. 8
    Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers The Hacker News
  8. 9
    Hims & Hers warns of data breach after Zendesk support ticket breach BleepingComputer
  9. 10
    Die Linke German political party confirms data stolen by Qilin ransomware BleepingComputer