On March 31, the cybersecurity community faced a major scare when two malicious versions of Axios, a wildly popular JavaScript library, were briefly published to the npm registry. These compromised versions contained a hidden threat that installed a remote access trojan on macOS, Windows, and Linux systems. Now, the project’s lead maintainer has revealed exactly […] The post Axios Maintainer Says npm Compromise Stemmed From Targeted Social Engineering appeared first on Cyber Security News.