Developer Tech

Axios npm attack causes JavaScript supply chain chaos

Security teams are grappling with a major supply chain attack on Axios, a popular JavaScript library with over 100 million ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Popular web-code library poisoned by malicious release

'This is unironically a malware nuclear missile.' ...

Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...
SecurityWeek

Axios NPM Package Breached in North Korean Supply Chain Attack

North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.
CSO Online

Attackers trojanize Axios HTTP library in highest-impact npm supply chain attack

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...
MLive

State Department orders libraries nationwide to no longer process passport applications

Your local library may no longer offer passport application processing thanks to an order from the State Department. According to the Associated Press, the department ordered certain non-profit public ...
TravelPulse

Why Passport Services Are Disappearing From Some Libraries

The U.S. State Department has ordered a subset of public libraries across the country to stop processing passport applications. In many communities, this new mandate disrupts a service that people ...
Newsweek

US State Department Orders Change to Passport Applications

According to the AP, the agency began issuing cease-and-desist letters to not-for-profit libraries last year, informing them they were no longer authorized to participate in the Passport Acceptance ...