27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials

it4int Pvt Ltd December 29, 2025

iT4iNT SERVER Cybersecurity researchers have disclosed details of what has been described as a "sustained and targeted" spear-phishing campaign that has published over two dozen packages to the npm registry to facilitate credential theft.
The activity, which involved uploading 27 npm packages from six different npm aliases, has primarily targeted sales and commercial personnel at critical VDS VPS Cloud

http://dlvr.it/TQ3PNl

Menu

27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials

0 Comments

Popular Posts

High Configuration Server

Dell RecoverPoint for VMs Zero-Day CVE-2026-22769 Exploited Since Mid-2024

Second Sha1-Hulud Wave Affects 25,000+ Repositories via npm Preinstall Credential Theft

Subscribe Us

Report Abuse

Contact Info

Contact List

Contact form

Menu

27 Malicious npm Packages Used as Phishing Infrastructure to Steal Login Credentials

You may like these posts

0 Comments

Popular Posts

High Configuration Server

Dell RecoverPoint for VMs Zero-Day CVE-2026-22769 Exploited Since Mid-2024

Second Sha1-Hulud Wave Affects 25,000+ Repositories via npm Preinstall Credential Theft

Subscribe Us

Report Abuse

Contact Info

Contact List

Contact form