Malicious code in ibrahimameen (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 41acc4d96fba5aca2df90c5698f57ccbf3d5d06b3fc00836f6a9727af1e5ade7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-167983 Malicious code in teagood-yakuza26 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0430937bd5d933b41ea6fa34b2b5820ffa52dc8b95d6a2ef9bae98ea5675a27e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-158267 Malicious code in lookingan-konami10 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee0df20e0871b42a2a681b89eeebf3e7aed4ccf0168a8af36f704b08885d441f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in pilka-lniu-kanuka (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57dd5dd30f2f91c409496481abce17a0c64aaefc118d6a2c84315c3fc58db411 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-65754 Malicious code in umi-gudeg53-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d960a968b3cf2b9b28d4859aad63a1057404bc6dc5fc605eb7a9f23439ab917e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-60709 Malicious code in intermediate_partridge_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d96638d69cfa08d49d60740fe2636782f0c3ce8f803091d09727108ba994a75e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-58079 Malicious code in oktafian-sate8-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a8736325ab84addb910c140ac88d8540d60466604a77cbd93f1b40d58c57b0ba This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2018-12728

Malware in sbrugna...

Researchers Uncover RAT-Dropping npm Package Targeting Gulp Users

Cybersecurity researchers have uncovered a new suspicious package uploaded to the npm package registry that's designed to drop a remote access trojan RAT on compromised systems. The package in question is glup-debugger-log, which targets users of the gulp toolkit by masquerading as a "logger for...

Malicious npm Packages Aim to Target Developers for Source Code Theft

An unknown threat actor is leveraging malicious npm packages to target developers with an aim to steal source code and configuration files from victim machines, a sign of how threats lurk consistently in open-source repositories. "The threat actor behind this campaign has been linked to malicious...