Researchers Detect Malicious npm Package Targeting GitHub-Owned Repositories

Updated on November 11, 2025

Cybersecurity researchers have discovered a malicious npm package named “@acitons/artifact” that typosquats the legitimate “@actions/artifact” package with the intent to target GitHub-owned repositories.
“We think the intent was to have this script execute during a build of a GitHub-owned repository, exfiltrate the tokens available to the build environment, and then use those tokens to publish…

Read the rest of the story at Read More

Source: The Hacker News

May 26, 2025 Uncategorized

Over 70 Malicious npm and VS Code Packag...

August 25, 2025 Uncategorized

Phishing Campaign Uses UpCrypter in Fake...

December 15, 2023 Uncategorized

Researchers Detect Malicious npm Package Targeting GitHub-Owned Repositories

Related posts

Over 70 Malicious npm and VS Code Packag...

Phishing Campaign Uses UpCrypter in Fake...

New KV-Botnet Targeting Cisco, DrayTek, ...

Leave a Comment Cancel reply

Recent News

ShadowRay 2.0 Exploits Unpatched Ray Flaw to Build Self-Spreading GPU Cryptomining Botnet

Tsundere Botnet Expands Using Game Lures and Ethereum-Based C2 on Windows

ThreatsDay Bulletin: 0-Days, LinkedIn Spies, Crypto Crimes, IoT Flaws and New Malware Waves

CTM360 Exposes a Global WhatsApp Hijacking Campaign: HackOnChat

New Sturnus Android Trojan Quietly Captures Encrypted Chats and Hijacks Devices

Iran-Linked Hackers Mapped Ship AIS Data Days Before Real-World Missile Strike Attempt

TamperedChef Malware Spreads via Fake Software Installers in Ongoing Global Campaign

Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)

Python-Based WhatsApp Worm Spreads Eternidade Stealer Across Brazilian Devices

WrtHug Exploits Six ASUS WRT Flaws to Hijack Tens of Thousands of EoL Routers Worldwide