88q

MAL-2026-3676

npmbackdoor5/12/2026
Description

Malicious code in 88q (npm)

Indicators of Compromise
SHA256 Hashes (18)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 (18)
https://www.npmjs.com/package/88q/v/1.1.1OSVhttps://www.npmjs.com/package/88q/v/1.4.8OSVhttps://www.npmjs.com/package/88q/v/1.2.6OSVhttps://www.npmjs.com/package/88q/v/1.3.6OSVhttps://www.npmjs.com/package/88q/v/1.0.2OSVhttps://www.npmjs.com/package/88q/v/1.2.4OSVhttps://www.npmjs.com/package/88q/v/1.4.9OSVhttps://www.npmjs.com/package/88q/v/1.1.4OSVhttps://www.npmjs.com/package/88q/v/1.4.6OSVhttps://www.npmjs.com/package/88q/v/1.3.3OSVhttps://www.npmjs.com/package/88q/v/1.0.7OSVhttps://www.npmjs.com/package/88q/v/1.3.5OSVhttps://www.npmjs.com/package/88q/v/1.2.3OSVhttps://www.npmjs.com/package/88q/v/1.2.5OSVhttps://www.npmjs.com/package/88q/v/1.4.7OSVhttps://www.npmjs.com/package/88q/v/1.2.7OSVhttps://www.npmjs.com/package/88q/v/1.3.2OSVhttps://www.npmjs.com/package/88q/v/1.1.5OSV
Details
Ecosystemnpm
Attack Typebackdoor
Published5/12/2026
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001