Threat Intelligence4 min read
North Korean Hackers Backdoored Axios npm Package in 40 Minutes
Google attributes the Axios npm supply chain attack to UNC1069, a North Korean threat actor. Malicious versions deployed WAVESHAPER.V2 backdoor across Windows, macOS, and Linux.
Alex KowalskiApr 21, 2026