Over 50 npm Packages Just Got Poisoned—Hackers Are Now Stealing Every Developer Secret

A Rust-based information stealer just infiltrated the JavaScript ecosystem through poisoned npm packages, and it’s designed to extract every secret on a developer’s machine before vanishing into a kernel rootkit.

The npm registry—the backbone of JavaScript development—has become the latest front in a supply chain war. According to research published in PMC, package repositories represent a reliable and scalable malware distribution channel for attackers. JFrog’s threat research reveals that attackers deployed malicious versions of over 50 legitimate packages to distribute two distinct threats: an information stealer that harvests developer credentials, API keys, and environment secrets, and a self-spreading worm variant called Miasma that can propagate itself across the entire ecosystem. The attack pattern mirrors a familiar playbook: compromise trusted infrastructure, hide the malicious code inside legitimate-looking updates, and let the developer community distribute the poison themselves.

The information stealer operates with surgical precision. It scrapes every secret it can find on a developer’s machine, then conceals itself behind an eBPF kernel rootkit—a low-level persistence mechanism that survives system reboots and evades traditional endpoint detection. This isn’t opportunistic theft; it’s infrastructure-level espionage designed to remain invisible while exfiltrating the crown jewels of software development: authentication tokens, database credentials, cloud API keys, and private encryption material.

The Miasma worm variant represents a second, equally dangerous threat vector. Self-spreading worms in supply chains are particularly lethal because they don’t require human intervention beyond the initial compromise. Once installed, Miasma can propagate to downstream dependencies, infecting not just the developers who installed the poisoned packages, but every project that depends on those packages. Research on supply chain attacks demonstrates that the worm’s ability to replicate itself across the npm dependency graph means the blast radius expands exponentially with each new installation.

How Does This Mirror Cambridge Analytica’s Data Harvesting Methods?

What makes this attack structurally similar to the Cambridge Analytica scandal is the harvesting mechanism itself. CA’s operation relied on psychological profiling data scraped from millions of Facebook users without informed consent—behavioral secrets extracted at scale and weaponized for micro-targeted influence. Here, attackers are harvesting developer secrets—the digital equivalent of psychological profiles for the software world. Just as CA built persuasion models from stolen personal data, these threat actors are building access models from stolen credentials. The scale differs, but the principle is identical: extract sensitive information from trusted systems, hide the extraction mechanism, and leverage that asymmetric knowledge for downstream exploitation. In both cases, the victim population (users, developers) trusts the infrastructure (Facebook, npm) and has no visibility into what’s being taken.

The Cambridge Analytica scandal established a blueprint for harvesting personal data at scale through trusted platforms, and this npm attack follows the same playbook with developer credentials instead of psychological profiles.

Which Packages Were Actually Compromised?

JFrog’s disclosure doesn’t specify which specific packages were poisoned, though the firm identified over 50 compromised projects. The npm ecosystem contains millions of packages, and developers often install dependencies without auditing every line of code. A single poisoned transitive dependency—a package that your package depends on—can compromise an entire development environment. This is why supply chain attacks in npm are so effective: the attack surface is massive, the trust model is implicit, and the detection window is measured in hours or days, not weeks.

What Should Developers Do Right Now?

For developers, the implications are immediate and severe. If you’ve installed npm packages in the last several weeks, your machine may be running code designed to exfiltrate your secrets. The kernel rootkit component means standard malware scans may not detect the threat. The self-spreading nature of Miasma means the attack is likely still propagating through new installations.

The npm security team and JFrog have begun removing poisoned packages and alerting maintainers, but the damage timeline is unclear. Supply chain attacks succeed precisely because they exploit the lag between deployment and discovery. By the time defenders identify the malicious packages, thousands of developers may have already installed them. The attackers have already harvested whatever secrets were present on those machines.

Check your npm audit logs and recent package installations. If you’ve pulled in updates from unfamiliar or newly-created packages in the past month, isolate those machines and rotate any credentials that may have been exposed. The npm ecosystem will likely implement stricter package verification and signing mechanisms in response, but for now, the attack is a stark reminder that trust in open-source infrastructure is a vulnerability when that trust is weaponized. Similar patterns have emerged in Laravel package compromises, suggesting this is becoming a systematic threat to developer infrastructure.