Malware in npm Package 'axios' Distributes Backdoor for Windows, macOS, and Linux

The maintainer account for the widely used npm package axios, an HTTP client, was compromised to distribute a backdoor targeting Windows, macOS, and Linux systems. The malicious payload was embedded in the package, functioning as a remote-access Trojan (RAT). No specific dates, version numbers, or CVE identifiers were provided in the report. The attack vector involved hijacking the legitimate npm account to push the infected package to unsuspecting users. The impact includes potential unauthorized access and control over affected systems across multiple operating systems.