malware npm

express-cookie-parser

discovered 2025-04-23

express-cookie-parser is identified in the SafeDep analysis "Malicious npm Package Impersonating Popular Express Cookie Parser". A malicious npm package impersonating the popular Express cookie parser package was discovered by SafeDep Cloud malicious package scanning service.

more…

Threat types

typosquat

Malicious versions

1.0.0

Campaigns

No Specific Campaignattributed-to

Indicators

ipv4 206.214.129.67communicates-with

Techniques

ttp T1195.001 Supply Chain Compromise: Compromise Software Dependencies and Development Toolsuses
ttp T1059.007 Command and Scripting Interpreter: JavaScriptuses
ttp T1036 Masqueradinguses
ttp T1539 Steal Web Session Cookieuses

Read the full analysis →