@seezo/sdr-mcp-server
MAL-2025-191053
npmmalware11/24/2025
Description
Malicious code in @seezo/sdr-mcp-server (npm)
Indicators of Compromise
SHA256 Hashes (3)
7b7f69d779a946a6b6408548d14b5cf5602601d3245ce9ef30701bc9f516f6bb
b1eb77f87000a9813a48ba3c4fcad2cbb779cadd29ed83dc1fad30dee6bdd1a1
649bfbecbcdf479eb5b511b451273be425d096b4dc20d8aa879535bd2fc6d268
References (4)
https://github.com/advisories/GHSA-3c5g-45xx-w65cOSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-3c5g-45xx-w65c
Quick Actions