JFrog Security Research

Malicious Packages

Last Updated On 8 Jun. 2022

692

Malicious packages
disclosed

ks-log - an obfuscated PII stealernpm
npm•<1k total downloads
Published on 8 Jun. 2022 ●
Published on 8 Jun. 2022 ●
@sorare-marketplace/components - a Discord token stealernpm
npm•<1k total downloads
Published on 8 Jun. 2022 ●
Published on 8 Jun. 2022 ●
angieslist-gulp-build-tasks - a Discord token stealernpm
npm•<1k total downloads
Published on 8 Jun. 2022 ●
Published on 8 Jun. 2022 ●
api-extractor-test-01 - a Discord token stealernpm
npm•<1k total downloads
Published on 8 Jun. 2022 ●
Published on 8 Jun. 2022 ●
next-plugin-normal - a Discord token stealernpm
npm•<1k total downloads
Published on 8 Jun. 2022 ●
Published on 8 Jun. 2022 ●
@commercialsalesandmarketing/contact-search - a Discord token stealernpm
npm•<1k total downloads
Published on 8 Jun. 2022 ●
Published on 8 Jun. 2022 ●
videojs-vtt - a Discord token stealernpm
npm•<1k total downloads
Published on 8 Jun. 2022 ●
Published on 8 Jun. 2022 ●
polymer-shim-styles - a Discord token stealernpm
npm•<1k total downloads
Published on 8 Jun. 2022 ●
Published on 8 Jun. 2022 ●
elysium-ui - a Discord token stealernpm
npm•<1k total downloads
Published on 8 Jun. 2022 ●
Published on 8 Jun. 2022 ●
threatresponse - a Discord token stealernpm
npm•<1k total downloads
Published on 8 Jun. 2022 ●
Published on 8 Jun. 2022 ●