[SECURITY] Compromised @antv packages on npm #13
Closed
socket-threat-research-team
started this conversation in
General
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
Summary
A compromised npm account (
atool,i@hust.cc) has published malicious versions of a large number of packages associated with the@antvnpm namespace.This activity is part of a coordinated supply chain attack pattern Socket has labeled Mini Shai-Hulud, involving high-volume malicious publishes across packages tied to compromised maintainer accounts.
Affected packages
The compromise spans the entire antv ecosystem and several related packages outside the namespace. Known affected scopes/packages include, but are not limited to:
@antv/g,@antv/g2,@antv/g2plot,@antv/g6,@antv/x6,@antv/s2,@antv/f2@antv/l7,@antv/graphin,@antv/data-setecharts-for-react,timeago.js,size-sensor,canvas-nest.jsThe full, continuously updated list of malicious package versions is tracked here: https://socket.dev/supply-chain-attacks/mini-shai-hulud
What the malware does
Each compromised version ships three additions that are not present in legitimate releases:
preinstallhook inpackage.jsonthat runsbun run index.jsonnpm install.index.js(~500 KB, single line) at the package root.On install, the payload harvests credentials from the local environment and any cloud or CI context the install runs in:
AssumeRoleWithWebIdentity, and the AWS shared credentials/config fileskubeconfigRunner.WorkerprocessHarvested data is exfiltrated over HTTPS via
fetch().Beta Was this translation helpful? Give feedback.
All reactions