@kvytech/medusa-plugin-newsletter
MAL-2025-190816
npmmalware11/24/2025
Description
Malicious code in @kvytech/medusa-plugin-newsletter (npm)
Indicators of Compromise
SHA256 Hashes (4)
1bc31b9734f80c450446788c107c2e8eb2c0f19e699251d173636ce56087ee15
99033b798316d2e4a30d7900d30e42c8339263e325be24419a9856beb1623378
894c285e19676f4d4bb10f52d3e587db7bc8fa784d2e1616a4907d4a65cad5e8
f1441da6d7352cbbd2d14d8cfc7ead2d2e44ec2de2ad7e397efbc50d380418ab
References (4)
https://github.com/advisories/GHSA-6chp-f2vh-826pOSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-6chp-f2vh-826p
Quick Actions