Malicious npm Package Stole Files From Claude AI User Directory via GitHub

CentryNex

Cybersecurity researchers have discovered a new malicious package on the npm registry that comes with information stealing capabilities.

According to OX Security, the package, named “mouse5212-super-formatter,” is designed to upload files from “/mnt/user-data,” a dedicated directory used by Anthropic’s Claude artificial intelligence (AI) tool to handle uploads and outputs in the background. The

SOURCE:

Share the Post:

Related News

Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users

Latin America and Europe become the target of two banking trojan campaigns that are designed to infect Windows and Android

3 SOC Steps that Shut Down Incident Risks Early

Most organizations still picture cyber defense as a fortress problem: build stronger walls, add more guards, buy another detection engine.

TRPO Multi-Agent Active Learning for Explainable DDoS Detection in Healthcare IoMT

TRPO Multi-Agent Active Learning for Explainable DDoS Detection in Healthcare IoMT Download