https://opensourcemalware.com/blog Security research and threat intelligence from OpenSourceMalware en-us Tue, 23 Jun 2026 19:21:48 GMT https://opensourcemalware.com/blog/opensourcemalware-show-episode09 https://opensourcemalware.com/blog/opensourcemalware-show-episode09 Mastra compromise, agentjacking, and malware mythbusting Thu, 18 Jun 2026 23:20:56 GMT cb482791-4ef1-4762-96ad-b0ca4bdd538e https://opensourcemalware.com/blog/mastra-npm-malware https://opensourcemalware.com/blog/mastra-npm-malware A malicious transitive dependency hit 140+ npm packages, with tradecraft matching the Axios compromise. Thu, 18 Jun 2026 17:57:35 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/opensourcemalware-show-episode08 https://opensourcemalware.com/blog/opensourcemalware-show-episode08 MSFT unpublished 73 repos, VS Code extension cooldowns, npm v12, Miasma open-sourced, and package firewalls Thu, 11 Jun 2026 12:00:00 GMT cb482791-4ef1-4762-96ad-b0ca4bdd538e https://opensourcemalware.com/blog/npm-v12 https://opensourcemalware.com/blog/npm-v12 NPM package manager (v12) closes serious security gaps, including making install scripts opt-in, but implementing it may not have the intended outcomes. Wed, 10 Jun 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/active-malware-campaigns-in-january-may-2026 https://opensourcemalware.com/blog/active-malware-campaigns-in-january-may-2026 We surfaced three trends about malware: npm and PyPI growing at similar rates, ATOs aren’t the only risk, and threat actors targeted non-developers. Mon, 08 Jun 2026 12:00:00 GMT cb482791-4ef1-4762-96ad-b0ca4bdd538e https://opensourcemalware.com/blog/miasma-blight-reaches-microsoft-73-repos-disabled-in-105-seconds https://opensourcemalware.com/blog/miasma-blight-reaches-microsoft-73-repos-disabled-in-105-seconds A terms of use violation triggered repos for Microsoft and Azure to go down for investigations - signs point to Miasma npm malware Sat, 06 Jun 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/the-software-supply-chain-malware-landscape-january-may-2026 https://opensourcemalware.com/blog/the-software-supply-chain-malware-landscape-january-may-2026 We surfaced three trends about malware: npm and PyPI growing at similar rates, ATOs aren’t the only risk, and threat actors targeted non-developers. Wed, 03 Jun 2026 12:00:00 GMT cb482791-4ef1-4762-96ad-b0ca4bdd538e https://opensourcemalware.com/blog/opensourcemalware-show-episode07 https://opensourcemalware.com/blog/opensourcemalware-show-episode07 Miasma npm worm targets Red Hat via trusted publishing abuse, OpenSourceMalware 2026 threat data, and the gray-area Moika campaign. Wed, 03 Jun 2026 12:00:00 GMT cb482791-4ef1-4762-96ad-b0ca4bdd538e https://opensourcemalware.com/blog/opensourcemalware-show-episode06 https://opensourcemalware.com/blog/opensourcemalware-show-episode06 OSV false positives, Crowdstrike takedown of Glassworm infra, and MSFT nukes a researcher Thu, 28 May 2026 12:00:00 GMT cb482791-4ef1-4762-96ad-b0ca4bdd538e https://opensourcemalware.com/blog/opensourcemalware-show-episode05 https://opensourcemalware.com/blog/opensourcemalware-show-episode05 npm staged publishing, DPRK's Axios-linked packages, TeamPCP's biggest npm maintainer compromise yet, and how a poisoned VS Code extension led to a GitHub emplo Thu, 21 May 2026 12:00:00 GMT cb482791-4ef1-4762-96ad-b0ca4bdd538e https://opensourcemalware.com/blog/teampcp-compromises-antv-npm https://opensourcemalware.com/blog/teampcp-compromises-antv-npm TeamPCP compromised npm maintainers atool and prop, republishing 324 packages including the AntV suite across 645 versions. IOCs and remediation steps inside. Wed, 20 May 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/axios-attacker-strikes-again https://opensourcemalware.com/blog/axios-attacker-strikes-again Three malicious NPM packages connected to the March Axios compromise have been quietly harvesting developer credentials since early April Tue, 19 May 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/how-malware-abuses-npm-lifecycle-scripts-and-vs-code-tasks https://opensourcemalware.com/blog/how-malware-abuses-npm-lifecycle-scripts-and-vs-code-tasks npm lifecycle scripts and VS Code tasks.json are productivity features that threat actors have learned to weaponize triggering malware Thu, 14 May 2026 12:00:00 GMT cb482791-4ef1-4762-96ad-b0ca4bdd538e https://opensourcemalware.com/blog/opensourcemalware-show-episode04 https://opensourcemalware.com/blog/opensourcemalware-show-episode04 RubyGems bot attack, ShinyHunters ransom Canvas, and the latest on Mini Shai-Hulud. Thu, 14 May 2026 12:00:00 GMT cb482791-4ef1-4762-96ad-b0ca4bdd538e https://opensourcemalware.com/blog/teampcp-mini-shai-hulud-tanstack-opensearch-and-mistral https://opensourcemalware.com/blog/teampcp-mini-shai-hulud-tanstack-opensearch-and-mistral TeamPCP's self-spreading npm worm "Mini Shai-Hulud" has compromised 170 npm packages and crossed into PyPI. Wed, 13 May 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/opensourcemalware-show-episode03 https://opensourcemalware.com/blog/opensourcemalware-show-episode03 git hook persistence, Antrea compromise, Dirty Frag, cPanel exploitation, interpreted language malware Thu, 07 May 2026 12:00:00 GMT cb482791-4ef1-4762-96ad-b0ca4bdd538e https://opensourcemalware.com/blog/lazarus-group-uses-git-hooks-to-hide-malware https://opensourcemalware.com/blog/lazarus-group-uses-git-hooks-to-hide-malware The Contagious Interview and TaskJacker campaigns now hides the stage-2 loader inside git hooks that download InvisibleFerret and Beavertail malware Wed, 06 May 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/cncf-project-antrea-compromised-in-daring-github-attack https://opensourcemalware.com/blog/cncf-project-antrea-compromised-in-daring-github-attack The Antrea open-source Kubernetes project was attacked via its Jenkins integration on May 2 by an unknown threat actor who opened a malicious pull request, Tue, 05 May 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/opensourcemalware-show-episode02 https://opensourcemalware.com/blog/opensourcemalware-show-episode02 Lovable and Vercel security incidents, a crazy git push RCE exploit, EDR vs AI agents, and the Mini-Shai-Hulud attack Thu, 30 Apr 2026 12:00:00 GMT cb482791-4ef1-4762-96ad-b0ca4bdd538e https://opensourcemalware.com/blog/opensourcemalware-show-episode01 https://opensourcemalware.com/blog/opensourcemalware-show-episode01 TeamPCP compromises Bitwarden, npm lifecycle scripts, OWASP's npm security cheat sheet Thu, 30 Apr 2026 12:00:00 GMT cb482791-4ef1-4762-96ad-b0ca4bdd538e https://opensourcemalware.com/blog/mini-shai-hulud-weaponizes-tasks-json-files https://opensourcemalware.com/blog/mini-shai-hulud-weaponizes-tasks-json-files Mini Shai-Hulud is a malicious npm worm by TeamPCP. It weaponizes tasks.json files, a technique first seen in North Korean Lazarus Group campaigns. Thu, 30 Apr 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/security-anti-patterns-caused-by-ai-coding-tools https://opensourcemalware.com/blog/security-anti-patterns-caused-by-ai-coding-tools Agentic platforms like Lovable, Claude, and Codex cause unexpected security anti-patterns Sun, 26 Apr 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/stardrop-supply-chain-attack-targets-venture-capital-firms-luxury-brands-and-ai-companies https://opensourcemalware.com/blog/stardrop-supply-chain-attack-targets-venture-capital-firms-luxury-brands-and-ai-companies Dozens of malicious npm packages to targeting AI companies, luxury brands, and venture capital firms. Tue, 14 Apr 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/polinrider-rides-again-north-korean-attack-expands-across-github https://opensourcemalware.com/blog/polinrider-rides-again-north-korean-attack-expands-across-github This North Korean attack has compromised 1,951 unique repositories belonging to 1,047 unique owners - a 3x growth since the campaign's discovery Sun, 12 Apr 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/velora-formerly-paraswap-sdk-version-941-compromised-and-installing-malware https://opensourcemalware.com/blog/velora-formerly-paraswap-sdk-version-941-compromised-and-installing-malware The npm package @velora-dex/sdk version 9.4.1 contains malicious code that automatically downloads and executes a shell script from a remote server when the Wed, 08 Apr 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/polinrider-dprk-compromised-hundreds-of-github-repos https://opensourcemalware.com/blog/polinrider-dprk-compromised-hundreds-of-github-repos Lazarus Group compromises GitHub repositories by implanting a malicious, obfuscated JavaScript payload. Wed, 08 Apr 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/the-social-engineering-playbook-attackers-use-to-target-oss-maintainers https://opensourcemalware.com/blog/the-social-engineering-playbook-attackers-use-to-target-oss-maintainers Account takeovers are some of the most harmful malware campaigns. Many start by compromising a maintainer account through social engineering. Wed, 01 Apr 2026 12:00:00 GMT cb482791-4ef1-4762-96ad-b0ca4bdd538e https://opensourcemalware.com/blog/has-teampcp-pivoted-to-using-the-purehvnc-rat https://opensourcemalware.com/blog/has-teampcp-pivoted-to-using-the-purehvnc-rat New threat campaign using PureHVNC has been tied to TeamPCP. Tue, 31 Mar 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/tasksjacker-dprk-attack-github-vscode https://opensourcemalware.com/blog/tasksjacker-dprk-attack-github-vscode A technical deep-dive into the next generation of DPRK attacks that borrows from Shai-hulud and Contagious Interview to compromise dozens of GitHub users Tue, 31 Mar 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/axios-compromise-transitive-dependency https://opensourcemalware.com/blog/axios-compromise-transitive-dependency The Axios NPM package has been compromised and the maintainer of the project has been locked out of their account. This will go down in history as one of the Tue, 31 Mar 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/teampcp-supply-chain-campaign-a-march-2026-retrospective https://opensourcemalware.com/blog/teampcp-supply-chain-campaign-a-march-2026-retrospective TeamPCP executed a cascading multi-phase supply chain attack that started with a single unrevoked credential stolen from Trivy's CI pipeline. Thu, 26 Mar 2026 12:00:00 GMT cb482791-4ef1-4762-96ad-b0ca4bdd538e https://opensourcemalware.com/blog/teampcp-hijacks-litellms-pypi-package-credential-stealer-hits-40k-star-project https://opensourcemalware.com/blog/teampcp-hijacks-litellms-pypi-package-credential-stealer-hits-40k-star-project TeamPCP compromised the LiteLLM maintainer's PyPI account and published malicious versions that steal credentials from every Python process on the host. Wed, 25 Mar 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/teampcp-defaces-aqua-securitys-internal-github-org-44-repos-exposed https://opensourcemalware.com/blog/teampcp-defaces-aqua-securitys-internal-github-org-44-repos-exposed TeamPCP compromised the aquasec-com GitHub organization, renaming all 44 repositories and exposing internal source code, CI/CD configs, and knowledge bases. Mon, 23 Mar 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/glassworm-invades-github-npm-open-vsx-and-vs-code https://opensourcemalware.com/blog/glassworm-invades-github-npm-open-vsx-and-vs-code The latest Glassworm attack compromised 430+ GitHub projects by leveraging four different ecosystems Mon, 16 Mar 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/neutralinojs-compromised-in-dprk-attack https://opensourcemalware.com/blog/neutralinojs-compromised-in-dprk-attack DPRK threat actors compromised Neutralinojs as part of a larger attack that utilizes stolen GitHub credentials to force-push backdated malicious commits Fri, 06 Mar 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/xpack-attack-cryptocurrency-extortion-disguised-as-npm-package-monetization https://opensourcemalware.com/blog/xpack-attack-cryptocurrency-extortion-disguised-as-npm-package-monetization A malware campaign weaponizes npm to extort crypto payments from developers during package installation Mon, 09 Feb 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/malicious-clawhub-skills-use-external-websites-to-hide-in-plain-sight https://opensourcemalware.com/blog/malicious-clawhub-skills-use-external-websites-to-hide-in-plain-sight Threat actors evolved ClawHub malware by moving payloads to convincing fake websites, allowing them to completely circumvent VirusTotal scans. Mon, 09 Feb 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/malicious-clawhub-skills-target-openclaw-users https://opensourcemalware.com/blog/malicious-clawhub-skills-target-openclaw-users Malicious ClawdBot skills target ByBit, Polymarket, Axiom, Reddit and LinkedIn, installing malware on unsuspecting OpenClaw user machines. Sun, 01 Feb 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/dprk-contagious-interview-campaign-fake-font-uses-malicious-vs-code-fonts https://opensourcemalware.com/blog/dprk-contagious-interview-campaign-fake-font-uses-malicious-vs-code-fonts “Lazarus Group's Fake Font campaign abuses VS Code task automation to silently execute BeaverTail malware, delivering the InvisibleFerret backdoor” Wed, 28 Jan 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/small-open-source-maintainers-targeted-by-vs-code-tasks-malware https://opensourcemalware.com/blog/small-open-source-maintainers-targeted-by-vs-code-tasks-malware At least 21 small OSS maintainers hit in 72 hours via malicious VS Code task configurations Mon, 26 Jan 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/contagious-interview-gets-an-upgrade-for-2026 https://opensourcemalware.com/blog/contagious-interview-gets-an-upgrade-for-2026 A single NPM package that led us to the Lazarus Groups latest campaign targeting software engineers using fake recruiters on LinkedIn, Fiverr and UpWork. Tue, 20 Jan 2026 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/dprk-malware-microsoft-vscode-dictionary-files https://opensourcemalware.com/blog/dprk-malware-microsoft-vscode-dictionary-files North Korean threat actors are hiding multi-stage malware droppers in VSCode configuration files, disguised as spell-check dictionaries. Tue, 23 Dec 2025 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/elf-stats-npm-christmas-spam-campaign https://opensourcemalware.com/blog/elf-stats-npm-christmas-spam-campaign This campaign includes 36 individual packages spread across 23 different NPM users. Wed, 03 Dec 2025 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/latest-contagious-interview-malware-campaign-abuses-microsoft-vscode-tasks https://opensourcemalware.com/blog/latest-contagious-interview-malware-campaign-abuses-microsoft-vscode-tasks Lazarus Group evolves their developer-focused campaign to hide malware in VS Code tasks.json files Sat, 29 Nov 2025 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2 https://opensourcemalware.com/blog/indonesianfoods-worm-86000-malicious-npm-packages https://opensourcemalware.com/blog/indonesianfoods-worm-86000-malicious-npm-packages NPM was flooded with junk packages that waste infrastructure resources, pollute search results, and creates supply chain risks if devs accidentall consume them. Thu, 13 Nov 2025 12:00:00 GMT c0a15726-c5b1-4b0d-85e6-fe15553df9e2