Jscrambler NPM Supply Chain Attack Exposes AI Tool Configurations

Jscrambler NPM Supply Chain Attack Exposes AI Tool Configurations

First seen 12 Jul 2026, 16:28 UTC ThehackernewsAiweekly.Cothehacker.newsjscrambler.comsafedep.io+1 86% similarity 69.0

Article Content

Browse articles
ThreatCluster

On July 11, 2026, the official jscrambler npm package was compromised, leading to the release of five malicious versions (8.14.0, 8.16.0, 8.17.0, 8.18.0, and 8.20.0) that included a Rust-compiled infostealer. This malware targets sensitive data from various AI coding tools, including config files for Claude Desktop, Cursor, and VS Code. The attack exploited a compromised npm publishing credential, allowing the attacker to bypass normal release processes. The malicious payload was designed to run at require-time, evading common security measures that block install scripts. The maintainers have since released clean versions (8.15.0 and 8.22.0) to mitigate the issue, but the blast radius remains significant with around 60,000 monthly downloads. Security teams are advised to enhance their credential storage practices to prevent similar attacks in the future.

Key Points: • Five malicious versions of jscrambler were released, compromising sensitive AI tool configurations. • The attack exploited a compromised npm publishing credential, allowing unauthorized releases. • Malware targets browser data, cloud credentials, and AI tool config files, posing a significant risk.

ThreatCluster AI

Timeline

2026-07-11
Jscrambler package compromised
Five malicious versions were published, including infostealers targeting AI tool configurations and browser data.
safedep.io
2026-07-11
Malicious versions identified
Versions 8.14.0, 8.16.0, 8.17.0, 8.18.0, and 8.20.0 were flagged as malicious, with 8.15.0 as a clean release.
Aiweekly.Co
2026-07-12
Clean versions released
Jscrambler maintainers released clean versions 8.15.0 and 8.22.0 to address the compromise.
safedep.io

Community

Browse all →