@ensdomains/buffer
MAL-2025-190866
npmmalware11/24/2025
Description
Malicious code in @ensdomains/buffer (npm)
Indicators of Compromise
SHA256 Hashes (3)
bae46f5c19a843ced3c421c4ef2bb7fc8c6dc112240fc84abafd26405d0a85bf
12272e5d6024045d6cb0f2d06f29bc7881872dfb62520a24a9f9f183edb72ed9
0eb504bdf0fb3172196232d24ee1b06108084a42809c2d921328a920c779cfb6
References (4)
https://github.com/advisories/GHSA-f9pq-63hg-w434OSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-f9pq-63hg-w434
Quick Actions