Back to all news
Security

Compromised AsyncAPI npm Packages Deliver Multi-Stage Botnet Malware

The Hacker News·July 15, 2026·1 min read
Compromised AsyncAPI npm Packages Deliver Multi-Stage Botnet Malware

Four compromised npm packages in the @asyncapi namespace are distributing multi-stage botnet malware, according to findings from OX Security, SafeDep, Socket, and StepSecurity. The affected packages include @asyncapi/generator-helpers, generator-components, and specs versions. The multi-stage botnet loader poses a significant supply chain security risk.

Read at The Hacker News
Daily crypto arcade

Read the news, then play it.

Chainshorts turns crypto headlines into a daily game. Catch up in 60 words, then jump into daily lucky draws for a shot at the pot.

Open ChainshortsGet it on the Solana dApp Store