https://opensourcemalware.com/blog Security research and threat intelligence from OpenSourceMalware en-us Fri, 05 Jun 2026 21:59:04 GMT https://opensourcemalware.com/blog/miasma-reaches-azure https://opensourcemalware.com/blog/miasma-reaches-azure GitHub disabled 73 Microsoft repositories across four of its GitHub organizations — the entire Azure Functions org, the whole Durable Task family, and a row of AI sample apps — in a 105-second sweep on June 5. The recompromised durabletask package sits at the center, and the fingerprints point at the open-sourced Miasma worm. Sat, 06 Jun 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/opensourcemalware-show-episode07 https://opensourcemalware.com/blog/opensourcemalware-show-episode07 Miasma npm worm hits Red Hat new OpenSourceMalware research on 2026 trends the Moika campaign Thu, 04 Jun 2026 00:00:00 GMT jenn https://opensourcemalware.com/blog/software-supply-chain-malware-landscape https://opensourcemalware.com/blog/software-supply-chain-malware-landscape We surfaced three trends about malware: npm and PyPI growing at similar rates, ATOs aren’t the only risk, and threat actors targeted non-developers. Wed, 03 Jun 2026 00:00:00 GMT jenn https://opensourcemalware.com/blog/opensourcemalware-show-episode06 https://opensourcemalware.com/blog/opensourcemalware-show-episode06 OSV false positives, Crowdstrike takedown of Glassworm infra, and MSFT nukes a researcher Wed, 27 May 2026 00:00:00 GMT jenn https://opensourcemalware.com/blog/opensourcemalware-show-episode05 https://opensourcemalware.com/blog/opensourcemalware-show-episode05 npm staged publishing, DPRK's Axios-linked packages, TeamPCP's biggest npm maintainer compromise yet, and how a poisoned VS Code extension led to a GitHub employee device compromise. Thu, 21 May 2026 00:00:00 GMT jenn https://opensourcemalware.com/blog/teampcp-compromises-npm-maintainer-with-over-540-packages https://opensourcemalware.com/blog/teampcp-compromises-npm-maintainer-with-over-540-packages A threat actor tracked as TeamPCP has compromised two npm maintainer accounts — including the one behind the AntV data-visualization suite — republishing 324 packages with over 16 million combined weekly downloads. Wed, 20 May 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/axios-attacker-additional-npm-packages https://opensourcemalware.com/blog/axios-attacker-additional-npm-packages Three malicious NPM packages connected to the March Axios compromise have been quietly harvesting developer credentials since early April Tue, 19 May 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/malware-abuses-vscode-lifecycle-scripts https://opensourcemalware.com/blog/malware-abuses-vscode-lifecycle-scripts npm lifecycle scripts and VS Code tasks.json are legitimate developer productivity features that threat actors have learned to weaponize triggering malware the moment you install a package or open a folder. Thu, 14 May 2026 00:00:00 GMT jenn https://opensourcemalware.com/blog/opensourcemalware-show-episode04 https://opensourcemalware.com/blog/opensourcemalware-show-episode04 RubyGems bot attack, ShinyHunters ransom Canvas, and the latest on Mini Shai-Hulud. Thu, 14 May 2026 00:00:00 GMT jenn https://opensourcemalware.com/blog/teampcp-mistralai-opensearch-compromised https://opensourcemalware.com/blog/teampcp-mistralai-opensearch-compromised A self-spreading npm worm dubbed Mini Shai-Hulud has compromised 170 npm packages and crossed into PyPI, hitting the AWS-maintained @opensearch-project/opensearch client (1.3M weekly downloads) and the official Mistral AI clients. The OpenSourceMalware team tracked, documented, and submitted every affected artifact. Wed, 13 May 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/opensourcemalware-show-episode03 https://opensourcemalware.com/blog/opensourcemalware-show-episode03 git hook persistence, Antrea compromise, Dirty Frag, cPanel exploitation, interpreted language malware Fri, 08 May 2026 00:00:00 GMT jenn https://opensourcemalware.com/blog/dprk-git-hooks-malware https://opensourcemalware.com/blog/dprk-git-hooks-malware DPRK's Contagious Interview and TaskJacker campaign is now hiding its second-stage loader inside git hooks that download InvisibleFerret and Beavertail malware Wed, 06 May 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/antrea-compromise2 https://opensourcemalware.com/blog/antrea-compromise2 The Antrea open-source Kubernetes project was attacked via its Jenkins integration on May 2 by an unknown threat actor who opened a malicious pull request, claimed root on the Jenkins controller, and taunted maintainers. Tue, 05 May 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/mini-shai-hulud https://opensourcemalware.com/blog/mini-shai-hulud TeamPCP has delivered another software supply chain attack that they are calling mini shai-hulud. This campaign borrows ts best trick from North Korean campaigns like PolinRider and Contagious Interview Thu, 30 Apr 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/opensourcemalware-show-episode02 https://opensourcemalware.com/blog/opensourcemalware-show-episode02 Paul and Jenn talking about the Lovable and Vercel security incidents. The crazy git push RCE exploit. EDR vs AI agents, and the Mini-Shai-Hulud attack Thu, 30 Apr 2026 00:00:00 GMT jenn https://opensourcemalware.com/blog/rise-ai-anti-patterns https://opensourcemalware.com/blog/rise-ai-anti-patterns An exposé of the systematic anti-patterns agentic platforms like Lovable, Claude, Codex, etc, inject into the SaaS applications they build. These anti-patterns encode insecure configurations into the applications they build, which affects anyone using these platforms. Sun, 26 Apr 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/opensourcemalware-show-episode01 https://opensourcemalware.com/blog/opensourcemalware-show-episode01 Welcome to the very first episode of The OpenSourceMalware Show! We discuss the latest TeamPCP attack and why you should change npm lifecycle scripts to off by default. Thu, 23 Apr 2026 00:00:00 GMT jenn https://opensourcemalware.com/blog/stardrop-attack https://opensourcemalware.com/blog/stardrop-attack A threat actor has been deploying dozens of malicious packages to NPM targeting AI companies, luxury brands, and venture capital virms. These packages drop a new malware straing that impersonates an AI coding tool. Tue, 14 Apr 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/polinrider-rides-again https://opensourcemalware.com/blog/polinrider-rides-again PolinRider is a DPRK supply-chain campaign that hides obfuscated JavaScript in developers' config files, fake font files, malicious npm packages, and weaponized take-home coding tests — and in five weeks it's gone from 675 to nearly 2,000 victim repositories Sun, 12 Apr 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/polinrider-attack https://opensourcemalware.com/blog/polinrider-attack A North Korean threat actor is implanting malware in hundreds of GitHub users and organizations repositories. This malware is the latest DPRK Beavertail variant that steals crednetials, crypto and installs a RAT. Wed, 08 Apr 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/velora-hacked https://opensourcemalware.com/blog/velora-hacked The npm package @velora-dex/sdk version 9.4.1 contains malicious code that automatically downloads and executes a shell script from a remote server when the package is imported, giving attackers arbitrary code execution on the victim's system. Wed, 08 Apr 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/social-engineering-playbook https://opensourcemalware.com/blog/social-engineering-playbook Account takeovers are some of the most harmful malware campaigns. Many start by compromising a maintainer account through social engineering. Wed, 01 Apr 2026 00:00:00 GMT Jenn https://opensourcemalware.com/blog/axios-compromised https://opensourcemalware.com/blog/axios-compromised The Axios NPM package has been compromised and the maintainer of the project has been locked out of their account. This will go down in history as one of the most successful software supply chain attacks ever Tue, 31 Mar 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/tasksjacker-blog-post https://opensourcemalware.com/blog/tasksjacker-blog-post A technical deep-dive into the next generation of DPRK attacks that borrows from Shai-hulud and Contagious Interview to compromise dozens of GitHub users Tue, 31 Mar 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/teampcp-purehvnc-campaign https://opensourcemalware.com/blog/teampcp-purehvnc-campaign New threat campaign using PureHVNC has been tied to TeamPCP. Tue, 31 Mar 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/teampcp-supply-chain-campaign https://opensourcemalware.com/blog/teampcp-supply-chain-campaign TeamPCP executed a cascading multi-phase supply chain attack in March 2026, leveraging a single unrevoked credential stolen from Trivy's CI pipeline to compromise several ecosystems — Aqua Security, npm, LiteLLM/PyPI, Checkmarx, and Telnyx — harvesting CI/CD secrets at each stage to fund the next, while also deploying a geotargeted filesystem wiper against Iranian infrastructure. Thu, 26 Mar 2026 00:00:00 GMT Jenn https://opensourcemalware.com/blog/teampcp-litellm-pypi-supply-chain-attack https://opensourcemalware.com/blog/teampcp-litellm-pypi-supply-chain-attack TeamPCP compromised the LiteLLM maintainer's PyPI account and published malicious versions that steal credentials from every Python process on the host. The attack is connected to the prior Trivy GitHub Actions compromise and the aquasec-com org defacement. Wed, 25 Mar 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/teampcp-aquasec-com-github-org-compromise https://opensourcemalware.com/blog/teampcp-aquasec-com-github-org-compromise TeamPCP compromised the aquasec-com GitHub organization, renaming all 44 repositories and exposing internal source code, CI/CD configs, and knowledge bases. Forensic analysis points to a stolen service account token from the prior Trivy GitHub Actions compromise. Mon, 23 Mar 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/four-arms-one-monster https://opensourcemalware.com/blog/four-arms-one-monster Multiple security researchers identify new Glassworm attacks that have compromised 430+ GitHub projects and attacked GitHub, NPM, the VS Code marketplace and Open-VSX Mon, 16 Mar 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/neutralinojs-compromise https://opensourcemalware.com/blog/neutralinojs-compromise The popular Neutralinojs framework was compromised in early March by DPRK threat actors as part of a larger attack that utilizes stolen GitHub credentials to force-push backdated malicious commits Fri, 06 Mar 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/malicious-clawhub-skills-hide-in-plain-sight https://opensourcemalware.com/blog/malicious-clawhub-skills-hide-in-plain-sight Threat actors have evolved their ClawHub attack strategy by moving payloads to convincing fake websites, allowing them to continue their malicious campaign Mon, 09 Feb 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/xpack-attack https://opensourcemalware.com/blog/xpack-attack A new NPM malware campaign weaponizes NPM to extort crypto payments from developers during package installation Mon, 09 Feb 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/clawdbot-skills-ganked-your-crypto https://opensourcemalware.com/blog/clawdbot-skills-ganked-your-crypto Malicious ClawdBot Skills Target ByBit, Polymarket, Axiom, Reddit and LinkedIn to Install Malware Sun, 01 Feb 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/contagious-code-fake-font https://opensourcemalware.com/blog/contagious-code-fake-font North Korean Lazarus Group creates new version of Contagious Interview that uses VS Code tasks to lauch malware hiding in fake fonts Wed, 28 Jan 2026 00:00:00 GMT Paul McCarty https://opensourcemalware.com/blog/oss-maintainters-vscode-tasks-compromised https://opensourcemalware.com/blog/oss-maintainters-vscode-tasks-compromised At least 21 small OSS maintainers hit in 72 hours via malicious VS Code task configurations Mon, 26 Jan 2026 00:00:00 GMT 6mile https://opensourcemalware.com/blog/contagious-interview-malware-comparisons https://opensourcemalware.com/blog/contagious-interview-malware-comparisons A deep-dive analysis on the different malware used across the contagious-interview threat campaigns. What do they steal? How do they maintain persistence? Do they target crypto wallets? Sat, 24 Jan 2026 00:00:00 GMT Paul McCarty https://opensourcemalware.com/blog/contagious-interview-developer-best-practices https://opensourcemalware.com/blog/contagious-interview-developer-best-practices A single NPM package that led us to the Lazarus Groups latest campaign targeting software engineers using fake recruiters on LinkedIn, Fiverr and UpWork. Tue, 20 Jan 2026 00:00:00 GMT Paul McCarty https://opensourcemalware.com/blog/one-api-to-query-them-all https://opensourcemalware.com/blog/one-api-to-query-them-all Introducing the unified check-malicious API endpoint - a single, standardized way to query packages, repositories, URLs, and domains for malicious content. Sat, 10 Jan 2026 00:00:00 GMT OpenSource Malware Team https://opensourcemalware.com/blog/contagious-interview-malicious-dictionary https://opensourcemalware.com/blog/contagious-interview-malicious-dictionary North Korean threat actors are hiding multi-stage malware droppers in VSCode configuration files, disguised as spell-check dictionaries, to compromise developers through fake job interviews and establish persistent backdoors with remote code execution capabilities. Tue, 23 Dec 2025 00:00:00 GMT Paul McCarty https://opensourcemalware.com/blog/elf-stats-spam-campaign https://opensourcemalware.com/blog/elf-stats-spam-campaign Security research and threat intelligence. Wed, 03 Dec 2025 00:00:00 GMT 6mile https://opensourcemalware.com/blog/contagious-interview-vscode https://opensourcemalware.com/blog/contagious-interview-vscode Security research and threat intelligence. Sat, 29 Nov 2025 00:00:00 GMT 6mile https://opensourcemalware.com/blog/indonesianfoods-npm-worm https://opensourcemalware.com/blog/indonesianfoods-npm-worm An in-depth analysis of the IndonesianFoods worm, a coordinated attack that published over 86,500 malicious packages to the NPM registry, affecting 60 NPM users and more than doubling the known number of malicious NPM packages. Thu, 13 Nov 2025 00:00:00 GMT Paul McCarty https://opensourcemalware.com/blog/security-best-practices https://opensourcemalware.com/blog/security-best-practices Essential security practices every developer should follow to protect their projects from malicious dependencies. Thu, 25 Jan 2024 00:00:00 GMT DevSec Team https://opensourcemalware.com/blog/supply-chain-attacks https://opensourcemalware.com/blog/supply-chain-attacks A deep dive into how attackers compromise open source packages and what you can do to protect your projects. Sat, 20 Jan 2024 00:00:00 GMT Security Research Team https://opensourcemalware.com/blog/getting-started https://opensourcemalware.com/blog/getting-started Learn how to contribute to the OpenSource Malware community and help protect the software supply chain from malicious packages. Mon, 15 Jan 2024 00:00:00 GMT OpenSource Malware Team