How did the malicious code execute upon installation?

The malicious versions included a `postinstall` script in the `plain-crypto-js` dependency, which downloaded and installed a Remote Access Trojan upon package installation.

What immediate actions should developers take if they installed the compromised versions?

Developers should remove the affected versions, rotate any potentially exposed credentials, and monitor their systems for signs of unauthorized access or unusual activity.

Axios npm Package Compromise: A 2026 Supply Chain Attack

In March 2026, attackers compromised the Axios npm package, distributing malicious versions that installed a cross-platform Remote Access Trojan.

Published: May 20, 2026

Share this on:

Executive Summary

In late March 2026, attackers compromised the npm account of a lead maintainer of Axios, a widely-used JavaScript HTTP client library. They published two malicious versions, axios@1.14.1 and axios@0.30.4, which included a trojanized dependency named plain-crypto-js. This dependency executed a postinstall script that downloaded and installed a cross-platform Remote Access Trojan (RAT) targeting macOS, Windows, and Linux systems. The malicious packages were available for approximately three hours before being removed by npm. (tomshardware.com)

This incident underscores the growing threat of supply chain attacks targeting open-source software repositories. The rapid deployment and removal of the malicious packages highlight the need for vigilant monitoring and swift response mechanisms within the software development community.

Why This Matters Now

The Axios npm compromise exemplifies the increasing sophistication of supply chain attacks, emphasizing the urgent need for enhanced security measures in open-source software development and distribution.

Attack Path Analysis

Attackers compromised the npm account of an Axios maintainer, publishing malicious versions of the package. These versions included a trojanized dependency that, upon installation, executed a Remote Access Trojan (RAT) to establish control over infected systems. The RAT enabled attackers to exfiltrate sensitive data and potentially disrupt operations.

Kill Chain Progression

Initial Compromise

High

Privilege Escalation

Medium

Lateral Movement

Lowinferred

Command & Control

High

Exfiltration

Medium

Impact

Lowinferred

Initial Compromise

Description

Attackers gained access to the npm account of an Axios maintainer and published malicious versions of the package.

Confidence:

High

MITRE ATT&CK® Techniques

Initial Access

T1195

Supply Chain Compromise

Reconnaissance

T1593.003

Search Open Websites/Domains: Code Repositories

Collection

T1213.003

Data from Information Repositories: Code Repositories

Defense Evasion

T1036

Masquerading

Persistence

T1546.016

Event Triggered Execution: Installer Packages

Potential Compliance Exposure

Mapping incident impact across multiple compliance frameworks.

NIST SP 800-53 – Supply Chain Protection

Control ID: SA-12

The incident highlights the need for organizations to implement robust supply chain protection measures to prevent the introduction of malicious code through third-party software components.

PCI DSS 4.0 – Establish a process to identify security vulnerabilities

Control ID: 6.1

The compromise underscores the importance of establishing processes to identify and address security vulnerabilities in software components to maintain the security of cardholder data.

NYDFS 23 NYCRR 500 – Application Security

Control ID: 500.08

The attack demonstrates the necessity for financial institutions to implement and maintain secure development practices to protect against vulnerabilities in software applications.

DORA – ICT Risk Management Framework

Control ID: Article 6

The incident emphasizes the need for financial entities to establish comprehensive ICT risk management frameworks to address risks associated with third-party software components.

CISA Zero Trust Maturity Model 2.0 – Implement Secure Software Development Practices

Control ID: Pillar 3: Applications and Workloads

The compromise highlights the importance of implementing secure software development practices to ensure the integrity and security of applications and workloads.

NIS2 Directive – Cybersecurity Risk Management Measures

Control ID: Article 21

The attack underscores the necessity for essential and important entities to adopt appropriate cybersecurity risk management measures to protect against supply chain attacks.

Sector Implications

Industry-specific impact of the vulnerabilities, including operational, regulatory, and cloud security risks.

Computer Software/Engineering

Critical exposure to malicious packages in npm/PyPI supply chains requires immediate OSV API integration and enhanced dependency scanning protocols.

Information Technology/IT

Supply-chain attacks targeting development dependencies demand robust package verification, lockfile enforcement, and automated malicious package detection systems.

Banking/Mortgage

Financial institutions face elevated risks from compromised open-source dependencies affecting PCI compliance and requiring enhanced zero-trust segmentation controls.

Health Care / Life Sciences

Healthcare systems must implement OSV scanning for HIPAA compliance while preventing malicious package infiltration through Kubernetes and cloud-native security fabrics.

Sources

Detecting Malicious Packages using the OSV APIhttps://openssf.org/blog/2026/05/20/detecting-malicious-packages-using-the-osv-api/
Verified

One of JavaScript's most popular libraries compromised by hackers — Axios npm package hit in supply chain attack that deployed a cross-platform RAThttps://www.tomshardware.com/tech-industry/cyber-security/axios-npm-package-compromised-in-supply-chain-attack-that-deployed-a-cross-platform-rat

Verified

LiteLLM PyPI Package Compromisehttps://digital.nhs.uk/cyber-alerts/2026/cc-4761

Verified

Axios compromised: hijacked maintainer account pushes malicious npm versionshttps://www.endorlabs.com/learn/npm-axios-compromise

Verified

Frequently Asked Questions

The compromised versions were `axios@1.14.1` and `axios@0.30.4`.

Cloud Native Security Fabric Mitigations and ControlsCNSF

Aviatrix Zero Trust CNSF is pertinent to this incident as it could have limited the attacker's ability to move laterally and exfiltrate data by enforcing strict segmentation and controlled egress policies.

Initial Compromise

Control: Cloud Native Security Fabric (CNSF)

Mitigation: While Aviatrix Zero Trust CNSF may not prevent the initial compromise of the npm account, it could limit the subsequent impact by restricting unauthorized communications from the compromised package.

Privilege Escalation

Control: Zero Trust Segmentation

Mitigation: Aviatrix Zero Trust Segmentation could likely limit the RAT's ability to escalate privileges by enforcing strict access controls and segmenting workloads.

Lateral Movement

Control: East-West Traffic Security

Mitigation: Aviatrix East-West Traffic Security could likely restrict lateral movement by controlling and monitoring internal traffic between workloads.

Command & Control

Control: Multicloud Visibility & Control

Mitigation: Aviatrix Multicloud Visibility & Control could likely detect and limit unauthorized outbound connections to command-and-control servers.

Exfiltration

Control: Egress Security & Policy Enforcement

Mitigation: Aviatrix Egress Security & Policy Enforcement could likely limit data exfiltration by controlling and monitoring outbound data flows.

Impact (Mitigations)

While Aviatrix Zero Trust CNSF may not prevent the initial compromise, it could likely limit the overall impact by restricting the attacker's ability to move laterally and exfiltrate data.

Impact at a Glance

Affected Business Functions

Software Development
Continuous Integration/Continuous Deployment (CI/CD) Pipelines
Application Security

Operational Disruption

Estimated downtime: 3 days

Financial Impact

Estimated loss: $50,000

Data Exposure

Potential exposure of developer credentials, API keys, and access tokens due to the execution of remote access trojans and information stealers embedded in the malicious packages.

Recommended Actions

• Implement Zero Trust Segmentation to limit the impact of compromised accounts.
• Enforce Egress Security & Policy Enforcement to monitor and control outbound traffic.
• Utilize Threat Detection & Anomaly Response to identify and respond to malicious activities.
• Apply Inline IPS (Suricata) to detect and prevent known exploit patterns.
• Ensure Multicloud Visibility & Control to maintain oversight across all cloud environments.

Secure the Paths Between Cloud Workloads

A cloud-native security fabric that enforces Zero Trust across workload communication—reducing attack paths, compliance risk, and operational complexity.

Stop Advanced Threats Get a Free Workload Attack Path Assessment Under Active Attack?

Axios npm Package Compromise: A 2026 Supply Chain Attack

Executive Summary

Why This Matters Now

Attack Path Analysis

Kill Chain Progression

Initial Compromise

Description

MITRE ATT&CK® Techniques

Supply Chain Compromise

Search Open Websites/Domains: Code Repositories

Data from Information Repositories: Code Repositories

Masquerading

Event Triggered Execution: Installer Packages

Potential Compliance Exposure

NIST SP 800-53 – Supply Chain Protection

PCI DSS 4.0 – Establish a process to identify security vulnerabilities

NYDFS 23 NYCRR 500 – Application Security

DORA – ICT Risk Management Framework

CISA Zero Trust Maturity Model 2.0 – Implement Secure Software Development Practices

NIS2 Directive – Cybersecurity Risk Management Measures

Sector Implications

Computer Software/Engineering

Information Technology/IT

Banking/Mortgage

Health Care / Life Sciences

Sources

Frequently Asked Questions

Cloud Native Security Fabric Mitigations and ControlsCNSF

Impact at a Glance

Affected Business Functions

Recommended Actions

Key Takeaways & Next Steps

Secure the Paths Between Cloud Workloads