Hackers used AI-generated deepfakes to target NPM maintainers in a sophisticated social engineering campaign, briefly compromising the popular axios package and exposing critical weaknesses in open source supply chain security.
Top NPM Maintainers Targeted with AI Deepfakes in Massive Supply-Chain Attack, Axios Briefly Compromised
Hackers used AI-generated deepfakes to target NPM maintainers in a sophisticated social engineering campaign, briefly compromising the popular axios package and exposing critical weaknesses in open source supply chain security.
Source: Slashdot