Incident detail

criticalnpm·maintainer compromise·github

Malware in dowload_ebok_los_enemigos_del_comercio_by_antonio_escohotado_6t2l4

dowload_ebok_los_enemigos_del_comercio_by_antonio_escohotado_6t2l4

Published May 15, 2026, 11:24 AM

Risk score

AI summary

Indexed incident for dowload_ebok_los_enemigos_del_comercio_by_antonio_escohotado_6t2l4 (npm).

Description

Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated immediately from a different computer. The package should be removed, but as full control of the computer may have been given to an outside entity, there is no guarantee that removing the package will remove all malicious software resulting from installing it.

Technical details

Affected versions

Indicators

ghsaGHSA-r33v-27px-qhf695%

Timeline

May 15, 11:24 AMAdvisory published
May 25, 12:58 PMIndexed by ThreatPkg

Related incidents

Malicious code in @slipless/sdk (npm)@slipless/sdk92
Malware in int-nodeint-node92
Malware in web3.prcweb3.prc92
Malware in web3-pricesweb3-prices92
Malicious code in web3-prices (npm)web3-prices92