Threat Intelligence Report

Supply Chain Malware Alert: plain-crypto-js Compromises Axios Packages

📅 April 10, 2026 📰 www.resecurity.com 🔍 0 CVE(s) referenced

A malicious npm package, plain-crypto-js, was stealthily embedded as a dependency in popular Axios releases, enabling cross-platform credential theft, remote code execution, and persistent attacker control over developer and CI/CD environments through highly obfuscated, automated malware.

vendor

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap

🎯 IOC Extraction

⚔️ MITRE ATT&CK TTPs

📦 STIX 2.1 Bundle