Philipp Burckhardt

More details on our blog, including recommended actions for defenders against yet another supply chain attack on the npm open-source ecosystem: https://t.co/hl3o0Ic5UY

Today, Socket detected malicious https://t.co/zs2xfdhboT npm packages that appear to replicate TeamPCP-style Canister Worm patterns, including exfiltration and self-propagation.

We identified 72 malicious Open VSX extensions linked to the GlassWorm campaign, including many cases where the malware is distributed transitively by being delilvered via covert extension packs. See below for link to our full coverage.

And the malicious Rust crates here https://t.co/wy12bVKrYF

While we haven't seen major supply chain attacks hitting any of the major open-source ecosystems, the Socket Threat Research Team uncovered some fascinating and creative attack techniques worth sharing:

Stay vigilant and keep those dependencies scanned! Read more about the QR code attack here: https://t.co/YXUEek6vJI

Direct link to post: https://t.co/TqoX0ztwv8

Read more: https://t.co/cosNQNHUCI

Two major npm supply chain discoveries this week from the Socket Research Team highlight a critical gap in traditional security approaches. Both threats would slip past security tools that rely on vulnerability databases or metadata alone.

Undocumented Protestware We found hidden functionality in 28+ npm packages that disables UI for Russian-language users visiting .ru or .by domains. No CVEs. No advisories. No documentation. Just behavior-based disruption quietly copied into packages and shipped to production.

These packages, disguised as "the cheapest Cursor API," install backdoors that steal credentials and modify crucial files. In total, sw-cur, sw-cur1, and aiide-cur have been downloaded 3,200+ times before discovery. Read more on the Socket blog: https://t.co/s5Y0bV6q4E

Over the last few months, I have been picking up Cursor again after finding it not substantially improving my productivity when I tried it last year. It, and the LLMs powering AI code completions, have gotten so much better that I now really enjoy its agent workflow.

🚨 With vibe coding being on everyone's minds and AI code generations seemingly becoming ubiquitous, it is not surprising that this attracts also malicious actors. Kirill Boychenko just uncovered three malicious npm packages targeting Cursor users on macOS.