Magazine Insights

Sonatype Discovers Two Malicious npm Packages

AndyC 20 March 2026

Sonatype Security Research has identified a potential compromise of a trusted npm maintainer account that has now published two malicious npm packages — sbx-mask and touch-adv — designed to exfiltrate secrets from victims’ computers.

[…Keep reading]

CISA urges IT to harden endpoint management systems after cyberattack by pro-Iranian group

Sonatype Security Research has identified a potential compromise of a trusted npm maintainer account that has now published two malicious npm packages — sbx-mask and touch-adv — designed to exfiltrate secrets from victims’ computers.

*** This is a Security Bloggers Network syndicated blog from 2024 Sonatype Blog authored by Sonatype Security Research Team. Read the original post at: https://www.sonatype.com/blog/sonatype-discovers-two-malicious-npm-packages

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts

Tags: account, compromise, identified, maintainer, malicious code npm, Malware, Malware Analysis, npm, NPM support, potential, research, Security, Security Bloggers Network, Security Research, Sonatype, Sonatype Guide, trusted

FBI Seizes Two Websites Linked to Pro-Iranian Group Handala

How can Agentic AI help your business stay ahead

AndyC 20 March 2026

BSidesSLC – BSidesSLC 2025 Opening Ceremonies – Kickoff From Sandy, Utah

When Do We Actually Need a Kubernetes Platform Team?

AndyC 20 March 2026

FBI Data Purchases Ignite New Clash Over Privacy and Surveillance

News alert: SpyCloud study reveal stolen tokens, session data fuel surge in non-human identity attacks

AndyC 20 March 2026

Real-Time Data: The Engine of Efficient, Sustainable Data Centers

Jeremy Snyder talks AI Governance on Security Weekly – FireTail Blog

AndyC 20 March 2026

Music giant BMG sues Anthropic over AI training

PowerShell Is a Security Risk – Here’s How to Fix It

AndyC 20 March 2026

President Trump’s Cyber Strategy for America: Why Integrity Is the Foundation of Modern Cyber Defense

President Trump’s Cyber Strategy for America: Why Integrity Is the Foundation of Modern Cyber Defense

AndyC 20 March 2026

Face value: What it takes to fool facial recognition

Face value: What it takes to fool facial recognition

AndyC 14 March 2026

ESET’s Jake Moore used smart glasses, deepfakes and face swaps to ‘hack’ widely-used facial recognition systems – and he'll demo it all at RSAC 2026...

Read More

Cyber fallout from the Iran war: What to have on your radar

Cyber fallout from the Iran war: What to have on your radar

AndyC 13 March 2026

The war in Iran was less than 24 hours old when it produced a historic first: the deliberate targeting of commercial data centers. On March...

Read More

Sednit reloaded: Back in the trenches

Sednit reloaded: Back in the trenches

AndyC 11 March 2026

Since April 2024, Sednit’s advanced development team has reemerged with a modern toolkit centered on two paired implants, BeardShell and Covenant, each using a different...

Read More

What cybersecurity actually does for your business

What cybersecurity actually does for your business

AndyC 7 March 2026

Business Security The ability to continue operating safely in an unsafe environment where competitors cannot is a competitive advantage that is rarely measured or discussed...

Read More

How SMBs use threat research and MDR to build a defensive edge

How SMBs use threat research and MDR to build a defensive edge

AndyC 6 March 2026

Corporate IT and security teams have the unenviable task of keeping relentless and increasingly sophisticated adversaries at bay. They’re often faced with limited resources and...

Read More

Protecting education: How MDR can tip the balance in favor of schools

Protecting education: How MDR can tip the balance in favor of schools

AndyC 5 March 2026

Business Security The education sector is notoriously short on cash, but rich in assets for threat actors to target. How can managed detection and response...

Read More

Security Blogs

Critical Ubiquiti UniFi UniFi security flaw allows potential account hijacking

AndyC 20 March 2026

Feds Disrupt IoT Botnets Behind Huge DDoS Attacks

Feds Disrupt IoT Botnets Behind Huge DDoS Attacks

AndyC 20 March 2026

CISA urges IT to harden endpoint management systems after cyberattack by pro-Iranian group

Sonatype Discovers Two Malicious npm Packages

AndyC 20 March 2026

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers

AndyC 20 March 2026

54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security

54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security

AndyC 20 March 2026