@npm_malware : ⚠️ New threat detected: @stihlus/stihl-icons-pack@1.50.0 ⚠️ This code is definitively malicious and represents a classic supply chain attack. It systematically collects and exfiltrates sensitive system information including environment variables (com... socket.dev/npm/package/@s… • TwiCopy

npm malware

@npm_malware

+ Follow

📣 We tweet malicious packages detected on npm in real-time. 🚨 Not affiliated with @npmjs or @github. 🛡 Powered by the @SocketSecurity threat feed. ✨

ID: 1564754411540316161

linkhttps://socket.dev calendar_today30-08-2022 23:18:46

6,6K Tweet

1,1K Followers

11 Following

npm malware

@npm_malware

2 months ago

⚠️ New threat detected: @stihlus/[email protected] ⚠️ This code is definitively malicious and represents a classic supply chain attack. It systematically collects and exfiltrates sensitive system information including environment variables (com... socket.dev/npm/package/@s…

thumb_up_off_alt0

chat_bubble_outline0

repeat0

shareShare