Sponsor of the Day:
Jerkmate
https://thehackernews.com/2026/04/google-attributes-axios-npm-supply.html
Google Attributes Axios npm Supply Chain Attack to North Korean Group UNC1069
Google links Axios npm supply chain attack to UNC1069 after trojanized versions 1.14.1 and 0.30.4 spread WAVESHAPER.V2, impacting multiple OS.
axios npm supplychain attacknorth koreangoogleattributes
https://cyberpress.org/unc1069-targets-crypto-pros/
North Korea-Linked UNC1069 Hacks Crypto Pros via Fake Meetings
Apr 21, 2026 - Recent cybersecurity research from Google Cloud and Mandiant has uncovered a highly sophisticated campaign by UNC1069.
north korea linkedvia fakeunc1069hackscrypto
https://thehackernews.com/2026/04/unc1069-social-engineering-of-axios.html
UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack
UNC1069 compromised Axios 1.14.1 and 0.30.4 via social engineering, impacting 100M weekly downloads and exposing supply chains.
npm supply chainsocial engineeringunc1069axiosmaintainer
https://gbhackers.com/north-korea-linked-unc1069/
North Korea-Linked UNC1069 Hacks Crypto Pros via Fake Meetings
Apr 20, 2026 - North Korea-linked threat actor UNC1069 is running a highly targeted campaign that abuses fake Zoom, Google Meet, and Microsoft Teams meetings to compromise...
north korea linkedvia fakeunc1069hackscrypto
https://www.tenable.com/blog/faq-about-the-axios-npm-supply-chain-attack-by-north-korea-nexus-threat-actor-unc1069
Axios npm Supply Chain Attack FAQ: North Korea UNC1069 | TenableĀ®
Apr 7, 2026 - North Korea-nexus threat actor UNC1069 compromised the axios npm package, delivering the WAVESHAPER.V2 RAT to macOS, Windows, and Linux systems.
axios npm supplychain attackfaq northkoreaunc1069