CVE-2026-40175: How Axios Turns Prototype Pollution Into Full Cloud Compromise
A deep dive into the critical Axios gadget chain that escalates prototype pollution to RCE and AWS IMDSv2 bypass. CVSS 9.9.
Blog
Topic: Security
The npm Attack Nobody Saw Coming: When Your Database Client Becomes a Spy
After Axios and LiteLLM, attackers are eyeing your database clients. Here's the attack pattern, why DB tools are perfect targets, and how Zero Trust architecture contains the blast radius.
The LiteLLM Supply Chain Attack: How Developer Machines Became Credential Vaults
In March 2026, the TeamPCP threat actor compromised PyPI packages LiteLLM 1.82.7 and 1.82.8, injecting infostealer malware that turned developer workstations into credential harvesting engines.
The Axios npm Supply Chain Compromise: A North Korean APT's Bold Move
On March 31, 2026, the North Korean state actor Sapphire Sleet compromised Axios npm packages, injecting malware that deployed RATs on developer machines worldwide. Here's what happened and how to stay safe.