Npm - Tool

Threat entity extracted from intelligence sources

Frequency
353
occurrences
First Seen
October 29, 2025
Last Seen
July 16, 2026

Npm is a tool tracked across 50 threat clusters and 353 intelligence report mentions on ThreatCluster. First observed October 29, 2025; most recent activity July 16, 2026.

Related Threat Clusters

Recent Intelligence Reports

  • Malicious AI Agents Attempt Reverse Shells, Credential Theft, and Persistent SSH Access — Gbhackers · July 16, 2026
  • Malicious Npm Terminal3airport Proxy Adware Spam — safedep.io · July 15, 2026
  • Remote Code Execution (RCE) in Npm tidgi Npm — Patchstack · July 14, 2026
  • AsyncAPI npm Packages With 2M Weekly Downloads Compromised via GitHub Actions — Cybersecuritynews · July 14, 2026
  • Security Advisory Malicious Npm Package — jscrambler.com · July 14, 2026
  • Lucide Proxy: 140+ npm Packages Turn Browsers Into DDoS Bots — Technadu · July 14, 2026
  • 148 Malicious npm Packages Masquerading as Student Proxies Turn Browsers Into DDoS Botnet — Rescana · July 14, 2026
  • 2406.10279v3 — arxiv.org · July 14, 2026

CVSS v3.1 Breakdown