~/ramimac.me $
2026-03-31
Contained

Axios npm Compromise

Compromised npm maintainer account distributes multi-platform credential stealer via injected dependency. Attributed to DPRK-nexus UNC1069 / Sapphire Sleet.

Last updated: Reach me (tip? feedback?)
Loading timeline...
Download JSON
Loading indicators...

Payload Repositories

Loading threads...

This site was created by Rami McCarthy (@ramimacisabird), Principal Security Researcher @ Wiz.