Two separate supply chain attacks in March 2026 compromised widely used open source tools — Trivy (vulnerability scanner) and Axios (npm HTTP library) — infecting tens of thousands of organizations. TeamPCP, a financially motivated group, injected credential-stealing malware into Trivy and then used stolen CI/CD secrets to compromise KICS, LiteLLM, and Telnyx. Separately, North Korean threat actor UNC1069 hijacked an Axios maintainer's account via AI-enhanced social engineering, deploying a RAT through a fake Teams meeting update prompt. Security experts warn these attacks signal a growing trend of targeting open source maintainers as a high-leverage attack vector. Recommended defenses include maintaining SBOMs, delaying adoption of packages newer than 24 hours, and preparing for deepfake-based social engineering.
Table of contents
Vuln scanner as initial attack vectorIn another open source galaxy, not so far away...What to expect when you're defendingSort: