malware npm
electron-builder-13
discovered 2025-01-16electron-builder-13 is identified in the SafeDep analysis "Malicious npm Packages using Burp Collaborator for Dependency Confusion Attack". Multiple npm packages impersonating popular package names were published to the npm registry including by a Snyk researcher apparently targeting internal packages at Cursor AI.
Threat types
rat persistence dependency_confusion typosquat
Malicious versions
- 13.4.5
Campaigns
Techniques
- ttp T1195.001 Supply Chain Compromise: Compromise Software Dependencies and Development Toolsuses
- ttp T1059.007 Command and Scripting Interpreter: JavaScriptuses
- ttp T1036 Masqueradinguses
- ttp T1105 Ingress Tool Transferuses
- ttp T1071.001 Application Layer Protocol: Web Protocolsuses
- ttp T1546 Event Triggered Executionuses
