In March, the popular Axios JavaScript library was compromised when a lead maintainer was tricked into installing a Remote Access Trojan. Attackers used customized social engineering—impersonating a company founder with AI-generated likenesses, webpages, and profiles—to bypass trust and undermine supply chain security. #Axios #RemoteAccessTrojan