malicious npm packages - Robuta Search

https://www.csoonline.com/article/4050956/malicious-npm-packages-use-ethereum-blockchain-for-malware-delivery.html Malicious npm packages use Ethereum blockchain for malware delivery | CSO Online Sep 3, 2025 - Ethereum smart contracts used to hide URL to secondary malware payloads in an attack chain triggered by a malicious GitHub repo. malicious npm packages use cso https://pastebin.com/P92bU5fb?source=archive Manipulated File in Malicious NPM Packages - Pastebin.com Pastebin.com is the number one paste tool since 2002. Pastebin is a website where you can store text online for a set period of time. malicious npm packages file https://www.zscaler.com/blogs/security-research/malicious-npm-packages-deliver-nodecordrat Malicious NPM Packages Deliver NodeCordRAT | ThreatLabz Jan 7, 2026 - ThreatLabz identified malicious NPM packages that deliver NodeCordRAT, which performs credential theft and steals cryptocurrency wallet data. malicious npm packages deliver https://www.infoworld.com/article/4086337/malicious-npm-packages-contain-vidar-infostealer.html Malicious npm packages contain Vidar infostealer | InfoWorld Nov 6, 2025 - Researchers say the malware was in the repository for two weeks, advise precautions to defend against malicious packages. malicious npm packages contain https://www.csoonline.com/article/4115417/malicious-npm-packages-target-n8n-automation-platform-in-a-supply-chain-attack.html Malicious npm packages target the n8n automation platform in a supply chain attack | CSO Online Jan 12, 2026 - Researchers discovered malicious npm packages posing as n8n integrations, exfiltrating OAuth tokens and API keys from enterprise workflows. malicious npm packages target https://www.csoonline.com/article/4082195/malicious-packages-in-npm-evade-dependency-detection-through-invisible-url-links-report.html Malicious packages in npm evade dependency detection through invisible URL links: Report | CSO... Oct 30, 2025 - Researchers outline how the PhantomRaven campaign exploits hole in npm to enable software supply chain attacks. malicious packages npm evade url https://arstechnica.com/security/2025/10/npm-flooded-with-malicious-packages-downloaded-more-than-86000-times/ NPM flooded with malicious packages downloaded more than 86,000 times - Ars Technica Oct 30, 2025 - Packages downloaded from NPM can fetch dependencies from untrusted sites. malicious packages npm flooded https://safedep.io/malicious-npm-packages-hyatt-campaign/ Malicious npm Packages Impersonating Hyatt Internal Dependencies — Real-time Open Source Software... Three malicious npm packages disguised as Hyatt internal dependencies were discovered using install hooks to execute malicious payloads. All packages share... malicious npm packages hyatt https://www.aikido.dev/blog/introducing-safe-chain Introducing Safe Chain: Stopping Malicious npm Packages Before They Wreck Your Project Safe-Chain by Aikido is a powerful tool to prevent installing any malicious package version by verifying each package with the Aikido Intel database and... malicious npm packages safe