Npm malware today continues to evolve, with attackers publishing kòd move, malicious npm packages, epi PyPI malicious packages designed to target development workflows, CI/CD pipelines, and open-source ecosystems. The Dijesyon Kòd Malveyan is Xygeni’s ongoing research report that tracks and verifies real malicious packages across npm, P&PI, VS Kòd, epi OpenVSX, including confirmed backdoors, data-stealers, credential exfiltration payloads, and automated multi-version malware campaigns.
Our research team updates this page regularly with validated findings, indicators of compromise (IOCs), modèl konpòtman, epi teknik analiz. As a result, developers, AppSec teams, and security engineers can stay ahead of npm malware today and emerging malicious package activity impacting modern software supply chains.
NPM Malware Today: Weekly Summary 24–29 April 2026
Researchers confirmed 97 pakè move across public registries during this period.
Dataset observations
- Most confirmed packages were published in npm
- Additional cases affected P&PI, OpenVSX, epi konpozitè
- Repeated malicious publishing across the same package families and related names
- High or atypical version patterns such as 99.x, 99.9.x, epi 1.0.x
- Strong use of payment and checkout, enterprise-stil, internal web app, analytics, UI foundation, developer-tool, cloud-themed, epi component-related naming patterns
- Multiple coordinated version bursts designed to resemble legitimate package updates
Monthly Malware Report: Confirmed Malicious npm Packages in April 2026
Welcome to the latest edition of the Xygeni Malicious Code Digest (Monthly Edition). Nan avril 2026, our research team confirmed more than 250 malicious packages, sitou atravè npm, with additional cases affecting PyPI, VS Code, OpenVSX, and Composer.
April was not only about volume. Alongside automation-driven publishing waves, aggressive version inflation campaigns, package family clustering, epi internal-tool impersonation, we observed some of the month’s most notable patterns in coordinated malicious publishing across:
fake internal tooling, AI-themed packages, payment and checkout modules, analytics clients, frontend components, developer utilities, Kubernetes and cloud tooling, VS Code and OpenVSX extensions, and trusted brand-like package names designed to blend into real software delivery pipelines.
These were not simple typosquatting incidents. Across the broader avril dataset, we observed credential abuse patterns, supply chain manipulation, repeated namespace reuse, epi coordinated malicious publishing designed to blend into real developer environments and software delivery pipelines.
Across the broader dataset, we continued to observe scripted multi-version publishing, inflated versioning schemes, payment- and enterprise-themed naming, AI- and agentic-themed package names, SDK and frontend component impersonation, internal-tool mimicry, and classic tactics such as konfizyon depandans ta dwe apwouve bèso tibebe w la epi èksfiltrasyon done.
This report is part of our ongoing Dijesyon Kòd Malveyan, where we validate new threats and provide entèlijans aksyonab ede Ekip DevSecOps yo stay ahead of risk chèn ekipman pou lojisyèl.
| Ekosistèm | Pake | Dat |
|---|---|---|
| npm | pa-marked:99.1.10 | Apr 27, 2026 |
| pypi | moonbit-locale-compat:0.2.3 | Apr 27, 2026 |
| npm | @alfa.life.mapp/app.web:99.0.13 | Apr 27, 2026 |
| npm | @sbt_gitverse/analytics-client:99.0.1 | Apr 27, 2026 |
| npm | @frengki0707/google-cloud-clone:1.33.1 | Apr 27, 2026 |
| npm | @alfa.life.mapp/app.web:99.0.14 | Apr 27, 2026 |
| npm | @tochka-ui/foundation:99.0.2 | Apr 27, 2026 |
| openvsx | arcane-spark/ubel:0.1.0 | Apr 28, 2026 |
| npm | @2011-08-19/n:99.9.9 | Apr 28, 2026 |
| npm | @frengki0707/google-cloud-clone:1.38.0 | Apr 27, 2026 |
How We Detect Malicious Code in npm Malware and PyPI Malware
Xygeni itilize teknik plizyè kouch pou bloke kòd move anvan li gaye. Premyèman, analiz kòd estatik detekte modèl obfuskasyon, chaj kache, ak abi script. Anplis de sa, analiz sandboxing konpòtman an enstale. hooks, kòmandman ekzekisyon, ak teknik pèsistans. Anplis, deteksyon aprantisaj machin idantifye malveyan npm zero-day ak varyant malveyan pypi ke eskanè siyati yo pa detekte. Finalman, Sistèm Avètisman Bonè a kontwole depo piblik yo an tan reyèl, valide rezilta yo, epi avèti ekip DevOps yo imedyatman.
Kòm rezilta, konbinezon sa a asire ke devlopè yo resevwa entèlijans rapid ak pratik entegre dirèkteman nan CI/CD workflows.
Poukisa Devlopè yo Ta Dwe Bay Pakè NPM Malveyan Yo Enkyetid
Menas modèn yo raman tann pou sistèm nan fonksyone. Pa egzanp, pakè npm move yo souvan egzekite pandan enstalasyon, alòske pakè pypi move yo kache èsfiltrasyon jeton oswa pòt dèyè. Moun k ap atake yo:
- Chanje repozitwa GitHub prive yo an piblik pou replike yo.
- Èksfiltre kalifikasyon ak sekrè yo lè l sèvi avèk chaj kode.
- Sèvi ak chajè JavaScript ki kache pou deplwaye ransomware oswa botnet.
Anfèt, pakè move sous ouvè yo te ogmante 156% nan yon ane. Se poutèt sa, ekip ki konte sèlman sou flux reta oswa eskanè debaz yo ap pran reta.
Sa rapò sou lojisyèl malveyan sa a swiv nan npm ak PyPI
Rezime sa a se sant prensipal pou:
- Pakè npm move konfime
- Pakè move pypi konfime
- Deteksyon kòd move ki baze sou konpòtman
- Ensidan konfime pa Rejis la
- Rezime rapò malveyan chak semèn ak chak mwa
- Jounal chanjman istorik tout rezilta malveyan npm ak malveyan pypi yo
Nan lòt mo, li bay yon sèl pwen referans. Ekip rechèch Xygeni a mete paj sa a ajou chak semèn avèk lyen pou analiz teknik konplè ak IOC GitHub yo.
Kijan pou pwoteje kont pakè npm move ak lojisyèl malveyan PyPI
Because of this growing risk, organizations need more than basic dependency checks. Strong defenses against malicious npm packages and pypi malicious packages require both preventive controls and runtime enforcement:
Enforce Lockfile-Only Installs Against Malicious npm Packages
Sèvi ak npm ci or pip install --require-hashes in CI/CD.
This ensures the exact dependency tree defined in lockfiles is used. As a result, attackers cannot slip in modified or typosquatted versions of malicious npm packages.
Pre-Install Scanning for npm Malware and PyPI Malware
Integrate Xygeni’s Early Warning Engine to scan npm malware and pypi malware before packages reach your environment.
Moreover, detect suspicious postinstall scripts, obfuscated loaders, or hardcoded C2 URLs.
Guardrails to Block Builds with Malicious Code
Mete guardrails to fail builds automatically if confirmed malicious npm packages or pypi malicious packages are detected.
For example, break builds on packages with unpublished maintainers, obfuscation patterns, or IOC matches. Consequently, malicious code never passes unnoticed.
Generate and Validate SBOMs Against Malicious npm Packages and PyPI Malware
Kreye SBOMs (CycloneDX, SPDX) for every build.
Afterward, compare against known malicious npm packages and pypi malware feeds to track both direct and transitive dependencies.
Credential and Token Protection from npm Malware and PyPI Malware
Many malicious npm packages try to read .npmrc, .pypirc, or environment variables.
Therefore, run builds in hardened containers with minimal secrets exposed. Additionally, use secrets managers instead of environment variables to block malicious code abuse.
Monitor Registry and Maintainer Changes in Malicious npm Packages
Attackers often hijack abandoned projects.
In particular, watch for sudden maintainer swaps, unusual versioning jumps, or excessive publishes in npm malware and pypi malicious packages.
Developer Training on Detecting Malicious Code in npm and PyPI
Teach teams to spot red flags such as:
- Package names with typos (
reqeustolye pou yorequest). - Nòman
installorprepareScripts. - Recently created packages with suspiciously high version numbers.
Above all, this awareness helps detect malicious code early.
Runtime Anomaly Detection for Malicious npm Packages and PyPI Malware
Even if malware bypasses static checks, runtime detection in CI/CD can catch:
- Unexpected network connections.
- File system modifications outside expected directories.
- Persistence attempts across jobs.
Finally, this ensures npm malware and pypi malware threats are stopped even after installation.
By combining these controls, teams prevent malicious npm packages and pypi malicious packages from ever reaching production pipelines.
Eseye zouti deteksyon malveyan Xygeni yo
Xygeni delivre:
- Deteksyon an tan reyèl kòd move, tankou backdoors, espyon, ak ransomware.
- In contrast to basic scanners, analysis across npm, PyPI, Maven, NuGet, RubyGems, and more.
- Blokaj otomatik konfigirasyon lè rapò malveyan an idantifye risk.
- Apèsi sou eksplwatasyon, verifikasyon repitasyon moun k ap mentni pwogram nan, ak deteksyon anomali.
Rete enfòme
Our team updates this page every week. To receive alerts and detailed reports:
- Abònman nan nou an Bilten nouvèl nou
- swiv @XygeniSecurity on Linkedin
- Bookmark this page to track the latest npm malware ta dwe apwouve bèso tibebe w la epi pypi malveyan menas




