selenium-session
MAL-2025-191421
npmmalware11/25/2025
Description
Malicious code in selenium-session (npm)
Indicators of Compromise
SHA256 Hashes (3)
a5e6b3327c7ae84733f196eb2c1c230fdabd391aea3616977cefb5b555238cab
9ecd0e6dc81b318ff25ac39f8955edd9409fd4ffec088409a60da0570a050691
3f0d38854c965bbf66a31908c2d726425f85096ae124af242126b9158caefefc
References (8)
https://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSVhttps://checkmarx.com/zero-post/shai-huluds-second-coming-npm-malware-attack-evolvedOSVhttps://www.veracode.com/blog/return-of-the-shai-hulud-wormOSVhttps://www.reversinglabs.com/blog/another-shai-hulud-npm-worm-is-spreading-heres-what-you-need-to-knowOSVhttps://www.koi.ai/incident/live-updates-sha1-hulud-the-second-coming-hundred-npm-packages-compromisedOSVhttps://research.jfrog.com/post/shai-hulud-the-second-comingOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/25/2025
Quick Actions