1 comment

[ 3.0 ms ] story [ 13.7 ms ] thread
The same threat actor that compromised Axios published three additional NPM packages within 18 hours. Unfortunately, these packages are still alive on NPM and compromising victims.