@npm_malware : ⚠️ New threat detected: winston-logger-pro@1.50.1 ⚠️ This module contains a malicious downloader and silent execution payload embedded in a logger factory. It fetches a binary from an external site, decodes it, writes it to disk in a public location a... socket.dev/npm/package/wi… • TwiCopy

npm malware

@npm_malware

+ Follow

📣 We tweet malicious packages detected on npm in real-time. 🚨 Not affiliated with @npmjs or @github. 🛡 Powered by the @SocketSecurity threat feed. ✨

ID: 1564754411540316161

linkhttps://socket.dev calendar_today30-08-2022 23:18:46

6,6K Tweet

1,1K Followers

11 Following

npm malware

@npm_malware

2 months ago

⚠️ New threat detected: [email protected] ⚠️ This module contains a malicious downloader and silent execution payload embedded in a logger factory. It fetches a binary from an external site, decodes it, writes it to disk in a public location a... socket.dev/npm/package/wi…

thumb_up_off_alt0

chat_bubble_outline0

repeat0

shareShare