MAL-2026-2528 Malicious code in sjs-lint-build1 (npm)

sjs-biginteger typosquats big.js on npm. Published April 7, 2026 by throwaway account vanes.s.p.orit.a, the package ships legitimate big.js source and hides its payload in a dependency: sjs-lint-build1. On install, the dependency’s postinstall hook fetches the attacker’s SSH public key from a C2...

MAL-2023-8574 Malicious code in pyioapso (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx ddface0422e0d25912e1810f515798f9258e861b2f6d89a9514856d598a5395f Malicious packages campaign targeting developers, payload is hidden using Steganography, exfiltrate host information...

MAL-2023-8583 Malicious code in pyowler (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 9df2ac0489cd9816fc13f309f73773ae3fc26794b44dd4930ab92a367115899f Malicious packages campaign targeting developers, payload is hidden using Steganography, exfiltrate host information...

MAL-2023-8577 Malicious code in pyjoul (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx e55dbe349f945728a3c8ffe4453ba669e734eb355c732c8c01dfab6b5e687fce Malicious packages campaign targeting developers, payload is hidden using Steganography, exfiltrate host information...