JFrog Security Research
< Back

Malicious Packages

Last Updated On 5 Oct. 2022

1428
Malicious packages
disclosed
  • twitter
    gramin-npm - a download and execute payload
    npm<1k total downloads
    Published on 5 Oct. 2022
  • twitter
    @employee-experience/common - a PII stealer
    npm<1k total downloads
    Published on 5 Oct. 2022
  • twitter
    dkjgadkasdhasdhasduasdbascnmzxcahjsfguaskjasgjdk - a PII stealer
    npm<1k total downloads
    Published on 5 Oct. 2022
  • twitter
    wfa_project - a PII stealer
    npm<1k total downloads
    Published on 5 Oct. 2022
  • twitter
    colors-2.2.2 - a PII stealer
    npm<1k total downloads
    Published on 5 Oct. 2022
  • twitter
    @m365-admin/utilities - a PII stealer
    npm<1k total downloads
    Published on 5 Oct. 2022
  • twitter
    @m365-admin/customizations - a PII stealer
    npm<1k total downloads
    Published on 5 Oct. 2022
  • twitter
    colorss - a PII stealer
    npm<1k total downloads
    Published on 5 Oct. 2022
  • twitter
    @m365-admin/nav - a PII stealer
    npm<1k total downloads
    Published on 5 Oct. 2022
  • twitter
    tokenary-web3-provider - a PII stealer
    npm<1k total downloads
    Published on 5 Oct. 2022