ADVERTISEMENT

Malicious NPM package racks up 50,000 infections in days, developers fully compromised

Security researchers are warning developers about a malicious npm package that mimics the popular JavaScript framework, Ember.js. In a few days, it was downloaded nearly 50,000 times, leading to complete system compromise for affected developers.

malicious npm package mimicking popular javascript framework

Image by Cybernews.

Ernestas Naprys
Ernestas Naprys Senior Journalist
Feb 25, 2026 2 min read
downloads
Jurgita Lapienyte justinasv Izabele Pukenaite vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Add us as your Preferred Source on Google.
ADVERTISEMENT
Has my data been leaked?

ADVERTISEMENT