T1036

Masquerading: package impersonation and typosquatting

Package names, metadata, or publishing context imitate legitimate public or private dependencies.

discovered 2024-12-11

View on MITRE ATT&CK ↗

Seen in packages

npmthemes-vendoruses
npmx509-escapinguses
npmkeycloak-serveruses
npmmodule-stubuses
npmpostject-copyuses
npmmicrometer-docsuses
npmorbit-playroomuses
npmweekendfeuses
npmchrome-api-utilsuses
npmgrafana-sentry-datasourceuses
npm@patternfly-v5/patternflyuses
npmelectron-builder-13uses
npmgraphql.vscode-graphql-syntaxuses
npmmattermost-cloudnative-bootstrapperuses
npmnyc-configuses
npmslf4j-api-jsuses
npmexpress-cookie-parseruses
npmtensorflowjsuses
pypibitensoruses
pypibittenso-cliuses
pypiqbittensoruses
pypibittensouses
npmhyatt-residential-rosteruses
npmhyatt-albumuses
npmhyatt-avataruses
npm@Schedaero/shareduses
npmpino-sdk-v2uses
npmreact-refresh-updateuses
npmoc-aa-module-clientuses
npm@wame/ngx-adfsuses
npm@the-coca-cola-company/ngps-global-common-utilsuses
npmcr-static-shared-componentsuses
npm@ceeferenderer/fe-renderer-sdkuses
npmexpress-session-jsuses
npmstrapi-plugin-cronuses
npmstrapi-plugin-configuses
npmstrapi-plugin-serveruses
npmstrapi-plugin-databaseuses
npmstrapi-plugin-coreuses
npmstrapi-plugin-hooksuses
npmstrapi-plugin-monitoruses
npmstrapi-plugin-eventsuses
npmstrapi-plugin-loggeruses
npmstrapi-plugin-healthuses
npmstrapi-plugin-syncuses
npmstrapi-plugin-seeduses
npmstrapi-plugin-localeuses
npmstrapi-plugin-formuses
npmstrapi-plugin-notifyuses
npmstrapi-plugin-apiuses
npmstrapi-plugin-sitemap-genuses
npmstrapi-plugin-nordica-toolsuses
npmstrapi-plugin-nordica-syncuses
npmstrapi-plugin-nordica-cmsuses
npmstrapi-plugin-nordica-apiuses
npmstrapi-plugin-nordica-reconuses
npmstrapi-plugin-nordica-stageuses
npmstrapi-plugin-nordica-vhostuses
npmstrapi-plugin-nordica-deepuses
npmstrapi-plugin-nordica-liteuses
npmstrapi-plugin-nordicauses
npmstrapi-plugin-finsevenuses
npmstrapi-plugin-hextestuses
npmstrapi-plugin-cms-toolsuses
npmstrapi-plugin-content-syncuses
npmstrapi-plugin-debug-toolsuses
npmstrapi-plugin-health-checkuses
npmstrapi-plugin-guardarian-extuses
npmstrapi-plugin-advanced-uuiduses
npmstrapi-plugin-blurhashuses
npmsjs-bigintegeruses
npmsjs-lint-build1uses
npmbjs-bigintegeruses
npmbjs-lint-builderuses
npmbjs-lint-buildersuses
npmcjs-bigintegeruses
npmts-lint-buildsuses
npm@genoma-ui/componentsuses
npmrrweb-v1uses
npm@needl-ai/commonuses

Campaigns

No Specific Campaignattributed-to
Enterprise Dependency Confusionattributed-to
Bittensor Typosquat Campaignattributed-to
Strapi Plugin C2 Campaignattributed-to
big.js Typosquat SSH Backdoorattributed-to