@ensdomains/dnssecoraclejs
MAL-2025-190728
npmmalware11/24/2025
Description
Malicious code in @ensdomains/dnssecoraclejs (npm)
Indicators of Compromise
SHA256 Hashes (4)
2b2213b7c315f4946c9af40628887da05e22eb61d1efe96fa2138a98e051e112
0d8f72e47dba9adfd21c5f526d40d193f0435c04c45da2057d73878073ba79c4
560b60de26b8daef0bee83b65f60f5ee613d4ac4ea6d703da8df707abba44d95
dc86ef125185659c485d138970a16866029bf46387405054cfa07de93f03a4ff
References (4)
https://github.com/advisories/GHSA-2pmv-9vp5-q844OSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-2pmv-9vp5-q844
Quick Actions