Rewards Hub A security alert has been issued regarding malicious versions of the Axios library, specifically versions 1.14.1 and 0.30.4, which have been compromised. Users are advised to check their projects for these versions using the command `npm list axios` and inspect `package-lock.json` for any references to these versions. Additionally, the presence of the malicious module `plain-crypto-js` should be checked in the `node_modules` directory.
If the setup script has already executed, the `package.json` within the `plain-crypto-js` directory may have been replaced, indicating potential compromise. Users should also check for Remote Access Trojan (RAT) artifacts on affected systems, including specific directories on macOS, Linux, and Windows, to determine if they have been compromised.
Security Alert: Malicious Versions of Axios Detected
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.