Ward

Supply chain threat intelligence for AI-assisted developers
42
Threats tracked
42
Attacks blocked
$ npm install -g wardshield && ward init

Threat Feed

axios@1.14.1 backdoor 2d ago
Maintainer account hijacked. Drops a cross-platform RAT via hidden plain-crypto-js dependency that steals SSH keys, cloud tokens, and credentials
Safe version: 1.14.0
axios@0.30.4 backdoor 2d ago
Same hijacked account. Identical RAT dropper targeting the legacy 0.x branch. Steals SSH keys and cloud credentials
Safe version: 0.30.3
plain-crypto-js@4.2.1 malicious-code 2d ago
Purpose-built RAT dropper staged for the axios attack. Postinstall script delivers OS-specific payloads that steal credentials and phone home to C2
@teale.io/eslint-config@1.8.12 credential-theft 12d ago
CanisterWorm attack. Steals npm auth tokens and launches background process to propagate the worm to all accessible packages
Safe version: 1.8.10
claud-code@0.2.1 credential-theft 1mo ago
Typosquat targeting Claude Code users. Self-replicating worm that steals tokens, modifies projects to include itself, and injects rogue MCP servers into AI coding tools
cloude-code@0.2.1 credential-theft 1mo ago
Another Claude Code typosquat. Same MCP-injection worm that instructs AI assistants to exfiltrate SSH keys and AWS credentials
rimarf@1.0.0 credential-theft 1mo ago
Typosquat of rimraf. Part of 19-package SANDWORM_MODE campaign stealing credentials and propagating via stolen npm tokens
hardhta@1.0.0 credential-theft 1mo ago
Typosquat of Hardhat (Ethereum dev framework). Same self-replicating credential theft worm
@ctrl/tinycolor@4.1.1 malicious-code 6mo ago
Shai-Hulud self-replicating worm. Runs TruffleHog to scan for secrets, steals npm/GitHub/AWS tokens, injects rogue GitHub Actions to spread
Safe version: 4.1.0
@ctrl/tinycolor@4.1.2 malicious-code 6mo ago
Second Shai-Hulud worm release. Same credential-stealing and self-propagating payload
Safe version: 4.1.0
ngx-bootstrap@18.1.4 malicious-code 6mo ago
Shai-Hulud worm victim. Postinstall steals secrets via TruffleHog and propagates to other packages
Safe version: 18.1.3
ngx-bootstrap@20.0.5 malicious-code 6mo ago
Later Shai-Hulud release across the 20.x branch. Same credential exfiltration and worm propagation
Safe version: 20.0.2
ng2-file-upload@9.0.1 malicious-code 6mo ago
Shai-Hulud worm. Steals npm tokens, GitHub PATs, and cloud credentials, then spreads to more packages
Safe version: 9.0.0
angulartics2@14.1.2 malicious-code 6mo ago
Shai-Hulud worm victim. Exfiltrates GITHUB_TOKEN, NPM_TOKEN, AWS_ACCESS_KEY_ID to attacker webhooks
Safe version: 14.1.0
ngx-toastr@19.0.1 malicious-code 6mo ago
Shai-Hulud worm propagation. Malicious preinstall scripts scan for and exfiltrate secrets
Safe version: 19.0.0
nx@21.5.0 credential-theft 7mo ago
S1ngularity attack via GitHub Actions injection. Deploys QUIETVAULT stealer that harvests tokens, keys, and secrets
Safe version: 21.4.0
nx@20.9.0 credential-theft 7mo ago
S1ngularity attack targeting legacy branch. Same QUIETVAULT stealer. Attacker gained full AWS admin access at a victim org within 72 hours
Safe version: 20.8.0
rand-user-agent@2.0.84 backdoor 11mo ago
Deprecated package hijacked. RAT establishes C2 connection for shell commands, file upload, and recon. Persists after downgrading
Safe version: 2.0.82
rand-user-agent@1.0.110 backdoor 11mo ago
Same hijack, 1.x branch. Same RAT payload. Full system scan required — downgrading does not remove the RAT
Safe version: 1.0.109
ethers-provider2@1.0.0 backdoor 12mo ago
Typosquat of ethers ecosystem. Patches the legitimate ethers package with a reverse shell backdoor. Uninstalling does NOT remove the backdoor
ethers-providerz@1.0.0 backdoor 12mo ago
Companion typosquat targeting ethers. Same reverse shell injection into the legitimate ethers library
@rspack/core@1.1.7 cryptominer 15mo ago
Published via stolen npm tokens. Hides XMRig Monero miner in support.js
Safe version: 1.1.6
@rspack/cli@1.1.7 cryptominer 15mo ago
Companion to rspack/core compromise. Same stolen token, same XMRig miner payload
Safe version: 1.1.6
vant@4.9.14 cryptominer 15mo ago
Stolen npm tokens. XMRig miner hidden as /tmp/vant_helper. Multiple versions affected across three major branches
Safe version: 4.9.10
vant@4.9.11 cryptominer 15mo ago
Earlier compromised version in the vant cryptominer campaign
Safe version: 4.9.10
@solana/web3.js@1.95.6 credential-theft 16mo ago
Account compromised via phishing. Exfiltrates Solana private keys through fake CloudFlare headers. $184K in crypto stolen
Safe version: 1.95.5
@solana/web3.js@1.95.7 credential-theft 16mo ago
Second compromised version from same account takeover. Same private key exfiltration backdoor
Safe version: 1.95.5
@0xengine/xmlrpc@1.3.4 cryptominer 17mo ago
Legitimate package turned malicious. Harvests SSH keys, bash history, and env vars every 12 hours. Deploys XMRig miner via systemd. Active for over a year
Safe version: 1.3.3
node-hide-console-windows@1.0.0 backdoor 17mo ago
Typosquat of node-hide-console-window. Downloads Discord bot that installs r77 rootkit for persistent stealthy access
@lottiefiles/lottie-player@2.0.5 credential-theft 17mo ago
Account phished. Injected crypto wallet drainer popup. At least one victim lost $723K in Bitcoin
Safe version: 2.0.4
@lottiefiles/lottie-player@2.0.6 credential-theft 17mo ago
Second malicious version from same phishing attack. Same wallet drainer. CDN users auto-served compromised release
Safe version: 2.0.4
@lottiefiles/lottie-player@2.0.7 credential-theft 17mo ago
Third malicious version. Three compromised releases within one hour. Upgrade to 2.0.8
Safe version: 2.0.4
colors@1.4.1 malicious-code 51mo ago
Maintainer sabotage. Infinite loop printing LIBERTY and Zalgo text, breaking all 19,000+ dependent applications
Safe version: 1.4.0
colors@1.4.44-liberty-2 malicious-code 51mo ago
Additional sabotage release. Same infinite loop payload
Safe version: 1.4.0
faker@6.6.6 malicious-code 51mo ago
Maintainer sabotage. All code gutted and replaced with empty shell. Use @faker-js/faker as the community fork replacement
Safe version: 5.5.3
coa@2.0.3 credential-theft 53mo ago
Account compromised. Postinstall downloads OS-specific payloads that steal browser passwords, credit cards, screenshots, and keystrokes
Safe version: 2.0.2
rc@1.2.9 credential-theft 53mo ago
Same attacker as coa hijack. Identical password-stealing malware. Package has 14M weekly downloads
Safe version: 1.2.8
ua-parser-js@0.7.29 cryptominer 54mo ago
Account hijacked. Injects XMRig Monero miner on Linux and credential-stealing trojan on Windows that harvests passwords from browsers and email clients
Safe version: 0.7.28
ua-parser-js@0.8.0 cryptominer 54mo ago
Same hijack. Identical cryptominer and credential stealer published to unused version range
ua-parser-js@1.0.0 cryptominer 54mo ago
Third malicious version from same hijack. Same payload across three version ranges to maximize blast radius
event-stream@3.3.6 backdoor 89mo ago
Attacker gained maintainer access via social engineering. Added flatmap-stream with encrypted payload targeting Bitpay Copay Bitcoin wallet
Safe version: 3.3.5
flatmap-stream@0.1.1 backdoor 89mo ago
Purpose-built payload for the event-stream attack. Uses Copay app description as AES256 decryption key to activate Bitcoin wallet theft