Malicious npm packages harvest crypto keys and secrets

English

Nineteen malicious packages on the npm registry are spreading a worm known as SANDWORM_MODE. These packages steal crypto keys, CI secrets, API tokens, and AI API keys. The theft occurs through MCP injection.

Security researchers have identified 19 malicious npm packages that are actively harvesting sensitive information from developers' systems. According to reports, these packages propagate a worm called SANDWORM_MODE, which targets crypto keys, continuous integration (CI) secrets, API tokens, and AI API keys.

The malicious software employs MCP injection as its primary method to extract and exfiltrate this data. npm, the popular package manager for JavaScript and Node.js, serves as the distribution platform for these threats, potentially compromising developers who install the affected packages unknowingly.

This incident highlights ongoing risks in open-source software ecosystems, where supply chain attacks can lead to widespread data breaches. No specific details on the exact names of the 19 packages or the total number of affected users were provided in the available information.

Developers are advised to review their dependencies and use tools to scan for vulnerabilities in npm packages to mitigate such risks.

Related Articles

Illustration depicting hackers hijacking Linux Snap Store apps to steal cryptocurrency recovery phrases, featuring a compromised Ubuntu laptop and digital seed phrase theft.
Image generated by AI

Attackers hijack Linux Snap Store apps to steal crypto phrases

Reported by AI Image generated by AI

Cybercriminals have compromised trusted Linux applications on the Snap Store by seizing expired domains, allowing them to push malware that steals cryptocurrency recovery phrases. Security experts from SlowMist and Ubuntu contributor Alan Pope highlighted the attack, which targets established publisher accounts to distribute malicious updates impersonating popular wallets. Canonical has removed the affected snaps, but calls for stronger safeguards persist.

Researchers uncover leaked API keys on nearly 10,000 websites

Researchers analyzing 10 million web pages have identified 1,748 active API credentials from 14 major providers exposed across nearly 10,000 websites, including those run by banks and healthcare providers. These leaks could enable attackers to access sensitive data or gain control over digital infrastructure. Nurullah Demir of Stanford University described the issue as very significant, affecting even major companies.

Anthropic's Git MCP server revealed security flaws

Reported by AI

Anthropic's official Git MCP server contained worrying security vulnerabilities that could be chained together for severe impacts. The issues were highlighted in a recent TechRadar report. Details emerged on potential risks to the AI company's infrastructure.

Technology

Russian hackers exploit Microsoft Office vulnerability days after patch

Linux

New SysUpdate malware variant targets Linux systems

Linux

New Linux botnet SSHStalker uses IRC for command-and-control

Wiper malware targets Poland's energy grid but causes no blackout

Researchers have attributed a failed cyberattack on Poland's electric grid to Russian state hackers, coinciding with the 10th anniversary of a similar assault on Ukraine. The wiper malware aimed to disrupt power distribution but did not succeed in knocking out electricity. Security firm ESET linked the incident to the notorious Sandworm group.

Researchers uncover new SysUpdate malware variant targeting Linux

Reported by AI

Researchers at LevelBlue have identified a new variant of the SysUpdate malware aimed at Linux systems during a digital forensics and incident response engagement. The malware disguises itself as a legitimate system service and employs advanced encryption for command-and-control communications. By reverse-engineering it, the team created tools to decrypt its traffic more quickly.

More than 40,000 WordPress sites affected by malware flaw

A vulnerability in a popular WordPress quiz plugin has impacted over 40,000 sites, allowing potential SQL injection attacks. Security researchers have identified the flaw, urging site owners to check for exposure. The issue was reported on February 4, 2026.

Anthropic's Claude Code CLI source code leaks online

Reported by AI

Anthropic's Claude Code command line interface source code has leaked online after a packaging error in a recent release. The incident exposed over 512,000 lines of code from nearly 2,000 TypeScript files. The company described it as human error with no sensitive data involved.

March 19, 2026 22:25

Duet Night Abyss launcher spreads malware on Steam

March 18, 2026 03:20

Infostealers Disguised as Claude Code, OpenClaw, and Other AI Tools

February 26, 2026 01:40

The hacker news publishes weekly threatsday bulletin

February 17, 2026 10:18

OpenClaw AI agents targeted by infostealer malware for first time

February 14, 2026 06:39

SSHStalker botnet uses IRC to target Linux servers

February 13, 2026 14:32

Fake Chrome AI extensions targeted over 300,000 users

February 11, 2026 00:43

Researchers discover SSHStalker botnet infecting Linux servers

February 05, 2026 15:05

Critical flaws discovered in n8n workflow tool

January 27, 2026 06:48

Zombie domains expose Snap Store to supply chain attacks

January 22, 2026 03:56

Malicious PyPI package impersonates SymPy to deploy XMRig miner

 

 

 

This website uses cookies

We use cookies for analytics to improve our site. Read our privacy policy for more information.
Decline