Supply Chain Attack Targets Axios HTTP Client Library with Multi-OS RAT Malware

The HTTP client library Axios, downloaded over 80 million times per week, was targeted in a supply chain attack. The attack distributed a multi-OS remote access trojan (RAT) malware through compromised versions of the software. No specific dates, CVE identifiers, or technical details about the malware’s functionality were provided in the report. The incident highlights risks associated with widely used open-source dependencies in software development. The attack vector involved tampering with the Axios codebase to embed malicious payloads. No information on affected systems or mitigation steps was disclosed.