1 post
The axios npm package — 70 million weekly downloads — was compromised by North Korean hackers for three hours. A RAT deployed to every machine that ran npm install. I live in this ecosystem. Here's what it looks like from inside.