Two malicious Axios npm releases, versions 1.14.1 and 0.30.4, were published after an attacker used a compromised long-lived classic npm token for the lead maintainer account. The poisoned packages added the hidden dependency plain-crypto-js 4.2.1, whose postinstall hook fetched and launched a cross-platform RAT on macOS, Windows, and Linux. The dropper contacted sfrclak[.]com:8000, deployed platform-specific artifacts such as /Library/Caches/com.apple.act.mond, %PROGRAMDATA%\wt.exe, and /tmp/ld.py, then erased package evidence within seconds. The compromise matters because it bypassed the project’s normal publishing controls and exposed developer machines and CI runners through a widely used dependency.