# Threat actors with ties to North Korea seized control of the lead maintainer of Axios.

*web3 · news · 2026-04-06 · The Hacker News*

## Key points

- North Korean hackers compromised the Axios npm package to distribute cross-platform malware WAVESHAPER.V2.
- Anthropic accidentally leaked over 512,000 lines of Claude Code source code, revealing unreleased features.
- Apple released iOS 18.7.7 patches to older devices due to the DarkSword exploit kit leak on GitHub.
- Device code phishing attacks surged 37.5x in 2026, fueled by new PhaaS toolkits like EvilTokens.
- LinkedIn was found covertly scanning visitors' browsers for competitor Chrome extensions to extract customer lists.

**Companies:** Google, Apple, Fortinet, TrueConf, Axios, Anthropic
**Countries:** North Korea, China, United States, India, Singapore, Australia, Canada, Denmark, Israel

[Read the full story on The Hacker News](https://thehackernews.com/2026/04/weekly-recap-axios-hack-chrome-0-day.html)

---

Canonical: https://newsio.io/n/fdaae072-638d-4589-8ac3-3bd9f7d7b3cc/threat-actors-with-ties-to-north-korea-seized-control-of-the-lead-maintainer-of
Summarized by Newsio from The Hacker News. https://newsio.io/how-it-works