On March 31, 2026, security researchers identified a severe supply chain attack targeting Axios, a popular HTTP client for JavaScript handling over 70 million weekly downloads. Two updated versions of the package, 1.14.1 and 0.30.4, were compromised by a malicious dependency that installs remote access trojans. Microsoft Threat Intelligence has attributed this campaign to Sapphire […] The post Axios npm Supply Chain Attack Prompts Microsoft Mitigation Guidance appeared first on Cyber Security News.