Xygeni Logo White
Try Free
Book a Demo
MALICIOUS CODE

Xygeni Malicious Code Digest 67

Table of Contents

Must-Read posts

Latest posts of interest

Every week, our malware detection systems scan thousands of new and updated packages across public registries like npm and PyPI.

This week was especially active.

We confirmed 220 malicious packages spanning npm, PyPI, VS Code, and OpenVSX. Several of them appeared in coordinated clusters, with repeated malicious releases published under the same names or across closely related package families. Many impersonated AI utilities, enterprise-facing modules, internal tooling, SDKs, frontend components, and developer workflow packages.

Beyond confirming 220 malicious packages, this week also reinforced broader software supply chain patterns we have been tracking, including:

These were not isolated anomalies. What stood out this week was the scale of repeated publication, the reuse of naming patterns, and the way malicious packages were positioned to look like legitimate dependencies inside real software delivery pipelines.

This weekly snapshot is part of our ongoing Malicious Code Digest, where we validate new threats and provide actionable intelligence to help DevSecOps teams protect their pipelines before damage occurs.

Let’s break down what we found this week and why it matters.

Ecosystem Package Date
pypiparascode:1.1.2Mar 27, 2026
npm@ctfsolve9z/coral-wraith:9999.0.2Mar 25, 2026
npmcoral-wraith:9999.0.2Mar 25, 2026
npmwraith-of-war:9999.0.0Mar 25, 2026
npmstormbreaker-shade:9999.0.3Mar 25, 2026
npmcoral-wraith:9999.0.8Mar 25, 2026
npmghost-engine:99.0.0Mar 25, 2026
npmecto-phantom:99.0.0Mar 25, 2026
npmecto-engine:99.0.0Mar 25, 2026
npmcorsair-module:99.0.0Mar 25, 2026
npmspectral-module:99.0.0Mar 25, 2026
npmecto-spirit:100.0.0Mar 25, 2026
npmghost-module:99.0.0Mar 25, 2026
npmecto-corsair-lwirz:100.0.0Mar 25, 2026
npmspectral-module:100.0.0Mar 25, 2026
npmghost-module:100.0.0Mar 25, 2026
npmecto-spirit:101.0.0Mar 25, 2026
npmspectral-module:101.0.0Mar 25, 2026
npmecto-spirit:104.0.0Mar 25, 2026
npmecto-spirit:105.0.0Mar 25, 2026
npmecto-spirit:106.0.0Mar 25, 2026
npmwraith-module:99.0.0Mar 25, 2026
npmwraith-module:102.0.0Mar 25, 2026
npmphantom-module:107.0.0Mar 25, 2026
npmecto-engine:200.0.0Mar 25, 2026
npmcorsair-module:200.0.0Mar 25, 2026
npmecto-spirit:109.0.0Mar 25, 2026
npmphantom-module:117.0.0Mar 25, 2026
npmphantom-module:111.0.4Mar 25, 2026
npmphantom-module:111.0.7Mar 25, 2026
npmphantom-module:111.0.9Mar 25, 2026
npmphantom-module:111.0.29Mar 25, 2026
npmphantom-module:117.0.7Mar 25, 2026
npmphantom-module:117.0.9Mar 25, 2026
npmecto-spirit:120.0.3Mar 25, 2026
npmecto-spirit:120.0.7Mar 25, 2026
npmecto-spirit:120.0.8Mar 25, 2026
npmecto-spirit:120.0.9Mar 25, 2026
npmphantom-module:123.0.0Mar 25, 2026
npmecto-spirit:120.2.1Mar 25, 2026
pypishopyo-dashboard:1.5.0Mar 27, 2026
npm@immuta/pxl-components:99.99.0Mar 27, 2026
npm@immuta/flag-providers-web:99.99.0Mar 27, 2026
npm@adamallana0909/apple-research-test:99.9.21Mar 27, 2026
npm@appleseed-apple/ac-sass-kit:100.0.2Mar 27, 2026
npmapple-internal-telemetry-agent:100.0.1Mar 27, 2026
npmcorp-utils:9.9.9Mar 27, 2026
npmac-dom-nodes:1.9.1Mar 27, 2026
npmsoul-ai:1.10.4Mar 27, 2026
npmrtxaspnet:1.0.0Mar 27, 2026
npmestaspnet:1.0.0Mar 27, 2026
npmac-element-engagement:3.0.1Mar 27, 2026
npm@ghackk/multi-claude:1.0.0Mar 25, 2026
pypimulti-claude:1.0.0Mar 25, 2026
npmcw-isdk:22.0.0Mar 25, 2026
npmcw-isdk:23.0.0Mar 25, 2026
npmcw-isdk:31.0.0Mar 25, 2026
npmcw-isdk:32.0.0Mar 25, 2026
pypimulti-claude:1.0.8Mar 25, 2026
npmcw-isdk:40.0.5Mar 25, 2026
npmcw-isdk:40.0.7Mar 25, 2026
npmcw-isdk:40.0.9Mar 25, 2026
npmcw-isdk:40.0.8Mar 25, 2026
pypimulti-claude:1.0.12Mar 25, 2026
pypimulti-claude:1.0.14Mar 25, 2026
npm@ghackk/multi-claude:1.0.14Mar 25, 2026
npmenvseed:0.3.3Mar 26, 2026
pypipymnemonic:1.1.3Mar 27, 2026
pypipymnemonic:1.2.5Mar 27, 2026
npmnative_dep:99.10.0Mar 27, 2026
pypimulti-claude:1.0.16Mar 25, 2026
npmtest_pkg_forppe:1.0.0Mar 25, 2026
npm@ghackk/multi-claude:1.0.17Mar 25, 2026
pypimulti-claude:1.0.17Mar 25, 2026
pypimulti-claude:1.0.18Mar 25, 2026
npm@ghackk/multi-claude:1.0.19Mar 25, 2026
npm@ghackk/multi-claude:1.0.20Mar 25, 2026
pypimulti-claude:1.0.20Mar 25, 2026
npm@ghackk/multi-claude:1.0.21Mar 25, 2026
npm@ghackk/multi-claude:1.0.22Mar 25, 2026
pypimulti-claude:1.0.22Mar 25, 2026
npm@ghackk/multi-claude:1.0.23Mar 25, 2026
pypiheader-spoofer:3.0.1Mar 27, 2026
npmahhc:1.1.0Mar 27, 2026
npmahmed_salem_ph:1.0.4Mar 27, 2026
npm@cdktf-constructs/azure-resourcegroup:2.3.0Mar 27, 2026
npm@promptions/promptions-ui:1.3.0Mar 27, 2026
npm@promptions/promptions-image:1.3.0Mar 27, 2026
npm@promptions/promptions-llm:1.3.0Mar 27, 2026
npm@promptions/promptions-chat:1.3.0Mar 27, 2026
npmlocal-rules:2.0.0Mar 27, 2026
npmenvseed:0.3.4Mar 26, 2026
npmwhatfix-icons:7.0.0Mar 28, 2026
npmnavi-design-system:7.0.0Mar 27, 2026
npmdeclarative-tracker:9999.0.0Mar 28, 2026
npmnavi-design-system:99.1.0Mar 27, 2026
npmrosud-call:2.0.7Mar 25, 2026
npmrosud-call:2.0.9Mar 25, 2026
npmrosud-call:2.1.2Mar 25, 2026
npmrosud-call:2.1.1Mar 25, 2026
npmrosud-call:2.1.4Mar 25, 2026
npmrosud-call:2.1.0Mar 25, 2026
npmrosud-call:2.3.0Mar 25, 2026
npmbuildkite-test-collector-vitest-example:99.99.9Mar 26, 2026
npmbuildkite-test-collector-playwright-example:99.99.9Mar 26, 2026
npmbuildkite-test-collector-cypress-example:99.99.9Mar 26, 2026
npmnf-cl-ls:99.0.0Mar 26, 2026
npmnf-cl-ls:99.0.1Mar 26, 2026
npmwn-idv-persona-client:99.0.4Mar 26, 2026
npmnflx-release:99.0.1Mar 26, 2026
npmrosud-call:2.4.4Mar 25, 2026
pypiplayground-ls-core:2026.3.0Mar 26, 2026
openvsxminherz/copyright-inserter:20.1.0Mar 26, 2026
openvsxmarshallofsound/gnls-electron:20.1.0Mar 26, 2026
openvsxabronan/capnproto-syntax:20.1.0Mar 26, 2026
npmrosud-call:2.4.6Mar 25, 2026
npmrosud-call:2.4.7Mar 25, 2026
npmrosud-call:2.4.8Mar 25, 2026
npmrosud-call:2.4.9Mar 25, 2026
npmbic-seo:99.0.0Mar 26, 2026
npmdelphoi:1.8.2Mar 26, 2026
npmty-web-session:3.0.1Mar 26, 2026
npmsfx-data:2.1.0Mar 26, 2026
npmty-web-session:3.0.2Mar 26, 2026
npmrosud-call:2.4.11Mar 25, 2026
npmint-browsing-gateway:1.0.4Mar 26, 2026
npmdelphoi-service:2.1.0Mar 26, 2026
npmsfx-fragment-injector:0.9.3Mar 26, 2026
npm@emilgroup/task-sdk-node:1.0.3Mar 26, 2026
npm@emilgroup/partner-portal-sdk:1.1.2Mar 26, 2026
npm@emilgroup/changelog-sdk-node:1.0.2Mar 26, 2026
npm@emilgroup/document-sdk-node:1.43.6Mar 26, 2026
npm@emilgroup/commission-sdk-node:1.0.3Mar 26, 2026
npmreact-leaflet-heatmap-layer:2.0.1Mar 26, 2026
npm@virtahealth/substrate-root:1.0.1Mar 26, 2026
npm@opengov/form-renderer:0.2.20Mar 26, 2026
npmopengov-k6-core:1.0.2Mar 26, 2026
npmeslint-config-service-users:0.0.3Mar 26, 2026
npm@leafnoise/mirage:2.0.3Mar 26, 2026
npm@pypestream/floating-ui-dom:2.15.1Mar 26, 2026
pypigam7:7.38.0Mar 26, 2026
vscodedarkgptaistudio:0.1.0Mar 26, 2026
npmrosud-call:2.5.0Mar 25, 2026
npmnintendoamerica-ncom:1.0.2Mar 24, 2026
npmnintendoamerica-ncom:1.0.5Mar 24, 2026
npmrepo-typescript-config:99.0.0Mar 24, 2026
npmyelp-react-component-badge:99.0.0Mar 24, 2026
npmyelp-react-component-badge:99.0.3Mar 24, 2026
npmyelp-react-component-badge:99.0.4Mar 24, 2026
npmnintendoamerica-ncom:99.0.7Mar 24, 2026
npmnintendoamerica-ncom:99.0.16Mar 24, 2026
npmnintendoamerica-ncom:99.0.19Mar 24, 2026
npmnintendoamerica-ncom:99.0.21Mar 24, 2026
npm@anh3d0nic/qwen-code-termux-ice:1.1.0Mar 26, 2026
npmcharacterai-poc:1.0.0Mar 26, 2026
npmrollcode:0.0.1Mar 26, 2026
npm@bluemoon-o2/rollcode:0.0.1Mar 26, 2026
npmrepo-typescript-config:99.0.11Mar 24, 2026
npmrepo-typescript-config:99.0.12Mar 24, 2026
npminfinity-ai:1.2.0Mar 26, 2026
pypiinsurance-db-mcp:1.0.4Mar 26, 2026
npminfinity-ai:1.2.5Mar 26, 2026
npminfinity-ai:1.2.6Mar 26, 2026
npm@thiagoemmanuell/unhandledrejection:1.0.0Mar 26, 2026
npmunhandledrejection1:1.0.2Mar 26, 2026
vscodekensuketheme:0.0.1Mar 26, 2026
npmtwilio-voice-notification-server:9.9.9Mar 26, 2026
npmrepo-typescript-config:99.0.29Mar 24, 2026
pypilitellm:1.82.7Mar 25, 2026
npmrepo-typescript-config:99.0.36Mar 24, 2026
pypilitellm:1.82.8Mar 25, 2026
npmsunshine-tool-helper:1.0.0Mar 26, 2026
npmreact-appfabric-shell:0.6.0Mar 26, 2026
npminsomnia-api:99.0.0Mar 26, 2026
npminsomnia-api:99.0.1Mar 26, 2026
npminsomnia-scripting-environment:99.0.1Mar 26, 2026
npmhardhat-starter-kit:99.0.1Mar 26, 2026
npmchainlink-docs:99.0.1Mar 26, 2026
npmpil2-stark-js:99.0.1Mar 26, 2026
npmchainlink-tron:99.0.1Mar 26, 2026
npmdeployer-kit:99.0.1Mar 26, 2026
npmpil2-proofman-js:99.0.1Mar 26, 2026
npmccip-starter-kit-hardhat:99.0.1Mar 26, 2026
npmsimple-util-kit:1.0.2Mar 25, 2026
npmenvseed:0.3.10Mar 26, 2026
npmenvseed:0.3.11Mar 26, 2026
npmenvseed:0.3.14Mar 26, 2026
npmenvseed:0.3.16Mar 26, 2026
npmenvseed:0.3.18Mar 26, 2026
npmenvseed:0.3.21Mar 26, 2026
npmenvseed:0.3.22Mar 26, 2026
npmenvseed:0.3.23Mar 26, 2026
npmenvseed:0.3.25Mar 26, 2026
npmenvseed:0.3.26Mar 26, 2026
npmsrcsrctest:1.0.1Mar 26, 2026
npmsrcsrctest:1.0.5Mar 26, 2026
npmfolio-data-utils:1.0.0Mar 27, 2026
npmxpna-context:1.0.0Mar 27, 2026
npmreact-appfabric-shell:0.6.1Mar 28, 2026
npmpromethios-bridge:1.7.0Mar 28, 2026
npmpromethios-bridge:1.7.5Mar 28, 2026
npmautoshipment-public-front:99.99.0Mar 31, 2026
npmpromethios-bridge:1.7.7Mar 30, 2026
npmpromethios-bridge:1.7.9Mar 30, 2026
npmpromethios-bridge:1.8.0Mar 30, 2026
npmdaytona-test-npm:1.0.0Mar 30, 2026
npmspr-i18n-labels:1.0.4Mar 30, 2026
npmpackage-with-import-assertions:99.0.0Mar 30, 2026
npmseparadordeinfo:1.0.0Mar 30, 2026
npmspr-i18n-labels:1.0.5Mar 29, 2026
npmsn3akysnak3-test:1.0.0Mar 29, 2026
npmsn3akysnak3-test:1.0.1Mar 29, 2026
npmdial-app-version:9999.0.0Mar 29, 2026
npmbizsignupnodeweb:99.10.9Mar 29, 2026
npmbizsignupnodeweb:99.11.9Mar 29, 2026
npmsn3akysnak3-test:1.0.2Mar 29, 2026
npmdial-app-version:9999.0.1Mar 29, 2026
npmdial-app-version:9999.0.3Mar 29, 2026
npmcardreadermgmtserv:99.13.9Mar 29, 2026
npmbusiness-data:99.13.9Mar 29, 2026
npmf0-state-manager:99.13.9Mar 29, 2026
npmnemo-datadrive:99.13.9Mar 29, 2026
npmmerchservicingnodeserv:99.13.9Mar 29, 2026
npmidaasfinancialnodeserv:99.13.9Mar 29, 2026
npmf0-fpti-tracking:99.13.9Mar 29, 2026
npmf0-email-verification:99.13.9Mar 29, 2026
npmcountry-specialization:99.13.9Mar 29, 2026
npmpromethios-bridge:2.0.1Mar 29, 2026
npmpromethios-bridge:2.1.2Mar 29, 2026
npmpromethios-bridge:2.1.5Mar 29, 2026
npmpromethios-bridge:2.1.7Mar 29, 2026
npmpromethios-bridge:2.1.8Mar 30, 2026
npmbos-decoration-elements:9.0.0Mar 30, 2026
npmpromethios-bridge:2.2.0Mar 30, 2026
npmearthengine-api:9.0.0Mar 30, 2026
npmcharacterai-poc:1.0.0Mar 31, 2026
npm@thiagoemmanuell/unhandledrejection:1.0.0Mar 31, 2026
npmenvseed:0.3.14Mar 31, 2026
npmrosud-call:2.4.7Mar 31, 2026
npmenvseed:0.3.18Mar 31, 2026
npminsomnia-api:99.0.0Mar 31, 2026

Secure Your Open Source Dependencies against Vulnerabilities and Malicious Code

Minimize risks and protect your applications from malicious packages with Xygeni Early Malware Detection. Prioritize and address the vulnerabilities that matter most. Our comprehensive solution offers real-time monitoring of your dependencies to detect and mitigate threats before they impact your software.

Managing open-source components in the current software development landscape is crucial due to the rising vulnerabilities and malicious code threats. Xygeni’s Open Source Security solution scans and blocks harmful packages upon publication, dramatically minimizing the risk of malware and vulnerabilities infiltrating your systems. Our comprehensive monitoring spans multiple public registries, ensuring all dependencies are scrutinized for safety and integrity. Xygeni enhances your team’s ability to maintain secure and reliable software projects by contextually prioritizing critical issues and facilitating streamlined remediation processes.

how-to-avoid-malware-malware-prevention-cve check

Xygeni uses multi-layered techniques to stop malicious code before it spreads. First of all, static code analysis detects obfuscation patterns, hidden payloads, and script abuse. In addition, behavioral sandboxing analyzes install hooks, runtime commands, and persistence tricks. Moreover, machine learning detection identifies zero-day npm malware and pypi malware variants missed by signature scanners. Finally, the Early Warning System monitors public repositories in real time, validates findings, and alerts DevOps teams immediately.

As a result, this combination ensures developers receive fast, actionable intelligence integrated directly into CI/CD workflows.

Why Developers Should Care About Malicious npm Packages

Modern threats rarely wait for runtime. For example, malicious npm packages often execute during installation, while pypi malicious packages hide token exfiltration or backdoors. Attackers:

  • Flip private GitHub repos to public to replicate them.
  • Exfiltrate credentials and secrets using encoded payloads.
  • Use obfuscated JavaScript loaders to deploy ransomware or botnets.

In fact, malicious open-source packages surged 156% in one year. Therefore, teams that rely only on delayed feeds or basic scanners fall behind.

What This Malware Report Tracks in npm and PyPI

This digest is the central hub for:

  • Confirmed malicious npm packages
  • Confirmed pypi malicious packages
  • Behavior-based detections of malicious code
  • Registry-confirmed incidents
  • Weekly and monthly malware report summaries
  • Historical changelog of all npm malware and pypi malware findings

In other words, it provides a single point of reference. The research team at Xygeni updates this page weekly with links to full technical analyses and GitHub IOCs.

How to Protect Against Malicious npm Packages and PyPI Malware

Because of this growing risk, organizations need strong defenses:

  • Enforce lockfile-only installs (npm ci) in CI/CD.
  • Additionally, scan dependencies pre-install with Xygeni’s Early Warning Engine.
  • Furthermore, block builds on malicious code signals using Guardrails.
  • Generate SBOMs to trace indirect dependencies and apply policies.
  • Above all, train developers to detect typosquatting, obfuscation, and suspicious install scripts.

Try Xygeni’s Malware Detection Tools

Xygeni delivers:

  • Real-time detection of malicious code, including backdoors, spyware, and ransomware.
  • In contrast to basic scanners, analysis across npm, PyPI, Maven, NuGet, RubyGems, and more.
  • Automatic build blocking when the malware report identifies risk.
  • Exploitability insights, maintainer reputation checks, and anomaly detection.
sca-tools-software-composition-analysis-tools
Prioritize, remediate, and secure your software risks
7-day free trial
No credit card required
Start Free Trial

Secure your Software Development and Delivery

with Xygeni Product Suite

Try Free
Take The Product Tour
Xygeni Logo White

© 2026 Xygeni. All rights reserved

Linkedin-in X-twitter Youtube

Products

Resources

Company

Legal