The package reference is quite popular, according to our data from @AikidoSecurity's Threat Intel. Yet somehow it never triggered, I guess?. Why did they change the payload now? Why has the package survived for 8 months? That's very strange.

Interesting situation: Somebody has sat on a dependency confusion package targeting the name `airflow-www` for 8 months, which included an install tracking payload. Then deleted that and uploaded a reverse shell version in its place.

RT @cyb3rjerry: The phishing domain used in the num2words package compromise is https[://]pypj[.]org/.

RT @InvokeReversing: @johnk3r @MalwareUtkonos @cyb3rjerry Detailed write up @MalwareUtkonos @johnk3r.

RT @SFLinux: @cyb3rjerry @johnk3r @MalwareUtkonos @InvokeReversing I found a weird token in our pypi account, probably the attacker had cre….

The Scavenger threat actors managed to compromise num2words. The maintainers removed the malicious package, and the threat actors published another package. Ouch. The package has ~700k weekly downloads. So that's a lot of exposure.

RT @cyb3rjerry: A new version (0.5.16) of num2words has been published and is still malicious. Looks like the cleanup was not successful.

RT @cyb3rjerry: This is indeed Scavenger, heads up! Solid catch @johnk3r .Here are the new C2 domains:.- https[://]pokerainteasy[.]su.- htt….

RT @SFLinux: @johnk3r @MalwareUtkonos @cyb3rjerry @InvokeReversing Thanks for the heads up! There was a phishing attack on pypi this mornin….

RT @johnk3r: 🛑 Heads-up: #num2words v0.5.15 (just dropped on PyPI) may be #compromised. Early signs probably link it to #Scavenger, the sa….

RT @chenleidev: update: aiting for GitHub/npmjs engineers to restore stylus access.

For reference, the malicious packages by `panya` happened 12 days ago. And npm only took action today. @AikidoSecurity Intel detected the three malicious packages and automatically flagged them as malware within 5 minutes of their publication. 👏👏.

Wow, what a wild week. First, the phishing campaign against npm maintainers. Now the `stylus` package being pulled down due to a maintainer publishing dependency confusion packages, and `stylus` getting caught in the crossfire. Lots of builds out there are breaking. 🔥🚒.

RT @AikidoSecurity: Introducing Aikido SafeChain 🔒⛓️. SafeChain wraps every npm, yarn, pnpm, and npx install. It blocks malware in real tim….

Also, is this the last time I travel out of town for more than 12 hours without a laptop? Yeah. Threat hunting on a phone is the stuff of nightmares. 😭.

RT @MalwareUtkonos: @CharlieEriksen There are more than that. Here are all the DLLs that I have found so far

Real talk though. Maybe it’s time to shift my work schedule to take weekend during the work week. All these big incidents right up to the weekend is looking like a trend 🙃.

RT @MalwareUtkonos: @Ax_Sharma got-fetch also contains a malicious DLL of the same malware family called "crashreporter.dll".30295311d62893….

Busy day. Finally had a chance to do a bit of threat hunting on the eslint-config-prettier attack. The same threat actor compromised got-fetch two days ago, version 5.1.11 and 5.1.12. The malicious versions are still live.

It is also significant to note that this is one of the best-documented cases of a targeted phishing attack against an important maintainer in the npm ecosystem. The domain was registered 5 days ago. Lots of lessons to be learned from this across the whole ecosystem.