Whole-laptop scanner for the Axios supply chain attack

On March 31, 2026, attackers hijacked the npm maintainer account for axios (300M+ weekly downloads) and published poisoned versions that deploy a cross-platform Remote Access Trojan. The malicious versions were live for ~3 hours before being pulled. Every security vendor published analysis. None shipped a tool that scans your entire laptop . So we built one. The 30-second version curl -sL https://raw.githubusercontent.com/booklib-ai/dispatch/main/dispatches/2026-04-01-axios-supply-chain-attack/scan.sh -o scan.sh chmod +x scan.sh ./scan.sh This scans every npm project on your machine, checks for malware artifacts, verifies no C2 connections are active, and lists credentials that may have been exfiltrated. What happened The attacker compromised the jasonsaayman npm account and published: axios@1.14.1 (targeting the 1.x user base) axios@0.30.4 (targeting the legacy 0.x branch) Both versions inject plain-crypto-js@4.2.1 — a package that runs a postinstall script deploying platform-specific

Whole-laptop scanner for the Axios supply chain attack

Related Articles

HadisKu Is Now Ad-Free: Why I Removed Ads From My Islamic App

How To Be Productive — its not all about programming :)

Welcome Thread - v371

Which Software to Develop Apps Is Best in 2026? Top Tools Reviewed

What You Need to Know About Building an Outdoor Sauna (2026)

Related Articles

How-To
HadisKu Is Now Ad-Free: Why I Removed Ads From My Islamic App
Dev.to • 1h ago

How-To
How To Be Productive — its not all about programming :)
Medium Programming • 1h ago

How-To
Welcome Thread - v371
Dev.to • 1h ago

How-To
Which Software to Develop Apps Is Best in 2026? Top Tools Reviewed
Medium Programming • 1h ago

How-To
What You Need to Know About Building an Outdoor Sauna (2026)
Wired • 3h ago