@immobiliarelabs/backstage-plugin-ldap-auth

MAL-2026-6528

npmmalware6/26/2026
Description

Malicious code in @immobiliarelabs/backstage-plugin-ldap-auth (npm)

Indicators of Compromise
SHA256 Hashes (5)
422e755562c4322c7295be83418b514151ccd1f462b740a0a7e11f08ee367b6e
fb42e335393a886f5f81ac29a53b4ec03413cd71d03ee53d5995c7bdf35d736e
7bff233d82e0c3c3759696b5edfe632a34c82110b946995777e621ce8fa2a7fa
a2d36181dd8e6e0d084445db016b1df3dafdf75a0efc9c8deeace0b61e74df4e
e447b204a3dbe39ad2390ad721dfc14f32b64e2c27d8b4efaf99a27e9cde7b92
Details
Ecosystemnpm
Attack Typemalware
Published6/26/2026
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001