@postman/secret-scanner-wasm
MAL-2025-190911
npmmalware11/24/2025
Description
Malicious code in @postman/secret-scanner-wasm (npm)
Indicators of Compromise
SHA256 Hashes (3)
b5d1604689ef91985fbc1fe9f8958eb7a50835e71b7cfa4125de687ca37c2d19
aeaf6631b3409ae49d11b7e96c45997d0f7de1d8d4d76fe181681c12d53ed6a9
16cb0383f876a5cac0dce83e4be06699edbe5282c5f544c0f044d799b770c474
References (9)
https://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSVhttps://socket.dev/blog/shai-hulud-strikes-again-v2OSVhttps://www.veracode.com/blog/return-of-the-shai-hulud-wormOSVhttps://www.reversinglabs.com/blog/another-shai-hulud-npm-worm-is-spreading-heres-what-you-need-to-knowOSVhttps://www.mend.io/blog/shai-hulud-the-second-comingOSVhttps://checkmarx.com/zero-post/shai-huluds-second-coming-npm-malware-attack-evolvedOSVhttps://www.koi.ai/incident/live-updates-sha1-hulud-the-second-coming-hundred-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Quick Actions