Malicious code in moustick (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 890180372ad21984cf864d1d144734f47f696379213ef6e7bdf02a4c1f186a7f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2026-5347 Malicious code in moustick (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 890180372ad21984cf864d1d144734f47f696379213ef6e7bdf02a4c1f186a7f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview moustick is a malicious package. This package contains malicious code that fetches and eval a remote payload from attacker-controlled URL https://www.jsonkeeper.com/b/MYUKZ on require in moustick/index.js. The payload is designed to extract RELAYERPRIVATEKEY and JWTSECRET from the victim...

Malicious Package

Overview cookie-parser-legacy is a malicious package. This package contains malicious code that uses another malicious package moustick Snyk Advisory as a dependency to fetch a remote payload from attacker-controlled URL https://www.jsonkeeper.com/b/MYUKZ. The payload is designed to extract...