New Blog: Mini Shai-Hulud "Miasma" Hits @redhat-cloud-services: 32 Packages at Risk
Edit Calendar Icon 1 Jun 2026
SafeDep Logo
malware npm

ts-logger-pack

discovered 2026-05-28

Dependency proxy to terminal-logger-utils, acting as a relay package in the MicrosoftSystem64 dropper chain. Published Apr 1 / May 20, 2026. Attributed to DPRK Famous Chollima. OSV: MAL-2026-4199 / GHSA-8w97-mwv3-cwx3.

Threat types

credential_stealer rat c2_agent data_exfiltration

Malicious versions

  • 1.0.0

Campaigns

Read the full analysis →