Hacking news

Researchers Detect Malicious npm Package Targeting GitHub-Owned Repositories

on November 11, 2025

The Hacker News

Cybersecurity researchers have discovered a malicious npm package named "@acitons/artifact" that typosquats the legitimate "@actions/artifact" package with the intent to target GitHub-owned repositories. "We think the intent was to have this script execute during a build of a GitHub-owned repository, exfiltrate the tokens available to the build environment, and then use those tokens to publish

More From Author

Hacking news

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

April 3, 2026

The Hacker News

Hacking news

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers

April 3, 2026

The Hacker News

Hacking news

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

April 3, 2026

The Hacker News

Researchers Detect Malicious npm Package Targeting GitHub-Owned Repositories

More From Author

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

Android Trojan ‘Fantasy Hub’ Malware Service Turns Telegram Into a Hub for Hackers

CISO’s Expert Guide To AI Supply Chain Attacks

Leave a Reply Cancel reply