Compromised jscrambler 8.14.0 npm Release Drops Rust Infostealer Duri… | HappeningNow.news
Published Date: July 11, 2026

Cybersecurity · 1 views

Compromised jscrambler 8.14.0 npm Release Drops Rust Infostealer During Install

Version 8.14.0 of the jscrambler npm package shipped with a malicious preinstall hook that silently drops and runs a native infostealer d…

Source The Hacker News AI Summary Updated 1h 45m ago
Story intelligence Beta
Freshness Fresh Updated 1h 45m ago
Confidence Limited Single-outlet story
Coverage Single outlet
Views 1 Community interest
Read time 1 min ~55 words

AI Summary

Version 8.14.0 of the jscrambler npm package shipped with a malicious preinstall hook that silently drops and runs a native infostealer during installation, one build each for Windows, macOS, and Linux. Published on July 11, 2026, it needs no import and no CLI call. Installing 8.14.0 is enough to run it. Socket flagged the release&n…

Read full article on The Hackernews

AI summaries can be wrong sometimes—always verify important details using the source article.

More coverage on this topic

CLI12 stories
View all CLI coverage
SUPPORT HAPPENINGNOW · Independent AI News Intelligence
SUPPORTER MESSAGE

Enjoyed this article? Consider supporting HappeningNow to help keep independent AI-powered news analysis moving forward. Your contribution helps cover infrastructure, AI summaries, and continued platform development.

Support HappeningNow

More from Cybersecurity

Continue reading recent Cybersecurity coverage