@ensdomains/blacklist

MAL-2025-190722

npmmalware11/24/2025
Description

Malicious code in @ensdomains/blacklist (npm)

Indicators of Compromise
SHA256 Hashes (4)
07bcfb9c86c46e63aa1dc427bf998d8bb29b002edb2a3b85fb593c886af8bf01
885b443e4475d3f0306ce0899d0afd3b9190193bac49fa411c41328695e05a46
9a1817b9781032c47d48b86d10af22a4a6dcea47106a8d931c0ad0299d284543
74dabe3bb82f165d2966ff19d74b4196e5b03c4550bec0a861e1159146193514
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-hmjx-cmm9-gq7m
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001