cktool.internal

MAL-2026-2925

npmmalware4/18/2026
Description

Malicious code in cktool.internal (npm)

Indicators of Compromise
SHA256 Hashes (2)
1e52d2b68ea5c35cb3a872d0f6cb042ebd710ee9515c326633243157da31c364
fea6b6dafa01114874236a50b5923473307ac91ce0b6c562d3ccb2fa27e6af48
References (1)
https://github.com/advisories/GHSA-49vv-fr4f-qphwOSV
Details
Ecosystemnpm
Attack Typemalware
Published4/18/2026
Affected Versions
0
Aliases
GHSA-49vv-fr4f-qphw
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001