A North Korean threat group, tracked as UNC1069, has been linked to the recent Axios npm supply chain attack by Google. This attack, driven by financial motives, targeted developers and organizations relying on Axios by exploiting the package. Google Threat Intelligence has confirmed the attribution, highlighting UNC1069's increasing involvement in supply chain attacks. The group's activities have significant implications, as state-aligned involvement shifts the threat model from a traditional criminal framework to a geopolitical one. This requires a distinct approach to mitigation and response, as the motivations and tactics employed by nation-state actors differ from those of criminal groups. The attribution of this attack to UNC1069 underscores the growing threat posed by state-sponsored actors in the cyber domain1. This matters to cybersecurity practitioners, as it necessitates a reassessment of their threat models to account for the unique characteristics of nation-state attacks.