safedep.io
Jscrambler NPM Supply Chain Attack Exposes AI Tool Configurations
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
On July 11, 2026, the official jscrambler npm package was compromised, leading to the release of five malicious versions (8.14.0, 8.16.0, 8.17.0, 8.18.0, and 8.20.0) that included a Rust-compiled infostealer. This malware targets sensitive data from various AI coding tools, including config files for Claude Desktop, Cursor, and VS Code. The attack exploited a compromised npm publishing credential, allowing the attacker to bypass normal release processes. The malicious payload was designed to run at require-time, evading common security measures that block install scripts. The maintainers have since released clean versions (8.15.0 and 8.22.0) to mitigate the issue, but the blast radius remains significant with around 60,000 monthly downloads. Security teams are advised to enhance their credential storage practices to prevent similar attacks in the future.
Key Points: • Five malicious versions of jscrambler were released, compromising sensitive AI tool configurations. • The attack exploited a compromised npm publishing credential, allowing unauthorized releases. • Malware targets browser data, cloud credentials, and AI tool config files, posing a significant risk.