Security
Compromised AsyncAPI npm Packages Deliver Multi-Stage Botnet Malware
The Hacker News·July 15, 2026·1 min read
Four compromised npm packages in the @asyncapi namespace are distributing multi-stage botnet malware, according to findings from OX Security, SafeDep, Socket, and StepSecurity. The affected packages include @asyncapi/generator-helpers, generator-components, and specs versions. The multi-stage botnet loader poses a significant supply chain security risk.
Read at The Hacker NewsDaily crypto arcade
Read the news, then play it.
Chainshorts turns crypto headlines into a daily game. Catch up in 60 words, then jump into daily lucky draws for a shot at the pot.
