Subj : npm debug and chalk packages compromised (Aikido)
To   : All
From : LWN.net
Date : Mon Sep 08 2025 19:00:08

npm debug and chalk packages compromised (Aikido)

Date:
Mon, 08 Sep 2025 17:45:42 +0000

Description:
The Aikido blog describes an apparently ongoing series of phishing attacks 
against NPM package
maintainers, resulting in the uploading of compromised versions of heavily
used packages: All together, these packages have more than 2 billion 
downloads per
	week. The packages were updated to contain a piece of code that would 
be
	executed on the client of a website, which silently intercepts
	crypto and web3 activity in the browser, manipulates wallet
	interactions, and rewrites payment destinations so that funds and
	approvals are redirected to attacker-controlled accounts without
	any obvious signs to the user.

======================================================================
Link to news story:
https://lwn.net/Articles/1037167/


--- Mystic BBS v1.12 A49 (Linux/64)
 * Origin: tqwNet UK HUB @ hub.uk.erb.pw (1337:1/100)

.