
About this episode
The episode discusses the supply chain attack on the axios NPM package and its implications.
Dennis and Lindsey dig into what we know do far about the supply chain attack on the axios NPM package, including how the attacker gained access to the maintainer's account, the window of exposure for the malicious packages, the behavior of the RAT that's installed on victims' machines, and what the downstream effects may be. Links Huntress post : https://www.huntress.com/blog/supply-chain-compromise-axios-npm-package Socket analysis : https://socket.dev/blog/axios-npm-package-compromised
People in this episode
Hosts: Dennis, Lindsey
Topics covered
- supply chain attack
- NPM package
- cybersecurity
- malware
- RAT
- software vulnerabilities
Keywords
- axios
- NPM
- supply chain attack
- malicious packages
- RAT
- cybersecurity
- Huntress
- Socket
Mentioned in this episode
Organizations: axios, Huntress, Socket
More episodes of Decipher Security Podcast
- The Shrinking Exploit Window, Patch Schedule Changes, and the Vulnpocalypse · June 12, 2026 · 33 min
- How The Conversation Predicted Our Surveillance Society 50 Years Ago · June 8, 2026 · 59 min
- Shai Hulud Returns, How Attackers are Using AI, and More Weird MSRC Behavior · June 5, 2026 · 37 min
- Microsoft Has Forgotten Its Vulnerability Disclosure History · May 29, 2026 · 46 min
- Lessons in Resilience, Perseverance, and Leadership With Matt Eversmann · May 25, 2026 · 1h 18m
- Chain Chain Chain of Compromises · May 22, 2026 · 22 min
Explore listener stats, chart rankings, contacts and more on the Decipher Security Podcast podcast page.