1. Forum
  2. tqwNet
  3. TQW LINUX

  • npm debug and chalk packages compromised (Aikido)

    From LWN.net@1337:1/100 to All on Monday, September 08, 2025 19:00:08
    npm debug and chalk packages compromised (Aikido)

    Date:
    Mon, 08 Sep 2025 17:45:42 +0000

    Description:
    The Aikido blog describes an apparently ongoing series of phishing attacks against NPM package
    maintainers, resulting in the uploading of compromised versions of heavily
    used packages: All together, these packages have more than 2 billion
    downloads per
    week. The packages were updated to contain a piece of code that would be
    executed on the client of a website, which silently intercepts
    crypto and web3 activity in the browser, manipulates wallet
    interactions, and rewrites payment destinations so that funds and
    approvals are redirected to attacker-controlled accounts without
    any obvious signs to the user.

    ======================================================================
    Link to news story:
    https://lwn.net/Articles/1037167/


    --- Mystic BBS v1.12 A49 (Linux/64)
    * Origin: tqwNet UK HUB @ hub.uk.erb.pw (1337:1/100)
  • From Mindsurfer@1337:1/104 to LWN.net on Monday, September 08, 2025 22:52:22
    Re: npm debug and chalk packages compromised (Aikido)
    By: LWN.net to All on Mon Sep 08 2025 19:00:08

    npm debug and chalk packages compromised (Aikido)

    this seems to be huge and more packages are affected.
    If you are into crypto, pause all transactions via software wallets and take extra care when you use a hardware wallet.

    Mindsurfer
    --- SBBSecho 3.28-Linux
    * Origin: FuNToPiA BBS - telnet://funtopia.synchro.net:3023 (1337:1/104)