AttackFeed by Joe Wagner | Malicious npm Package Stole Files From Claude AI User Directory via GitHub  - The Hacker News

Malicious npm Package Stole Files From Claude AI User Directory via GitHub  – The Hacker News

Posted on By [email protected] (The Hacker News) No Comments on Malicious npm Package Stole Files From Claude AI User Directory via GitHub  – The Hacker News
Attack Feeds

Cybersecurity researchers have discovered a new malicious package on the npm registry that comes with information stealing capabilities.

According to OX Security, the package, named “mouse5212-super-formatter,” is designed to upload files from “/mnt/user-data,” a dedicated directory used by Anthropic’s Claude artificial intelligence (AI) tool to handle uploads and outputs in the background. The  –

Read More  – The Hacker News 

You may also like

AttackFeed by Joe Wagner | Russian access broker sentenced to over 6 years in prison for ransomware schemes  - CyberScoop
Attack Feeds
Russian access broker sentenced to over 6 years in prison for ransomware schemes  – CyberScoop
March 24, 2026
AttackFeed by Joe Wagner | After Mythos: New Playbooks For a Zero-Window Era  - The Hacker News
Attack Feeds
After Mythos: New Playbooks For a Zero-Window Era  – The Hacker News
April 28, 2026
AttackFeed by Joe Wagner | Salesforce issues new security alert tied to third customer attack spree in six months  - CyberScoop
Attack Feeds
Salesforce issues new security alert tied to third customer attack spree in six months  – CyberScoop
March 11, 2026
AttackFeed by Joe Wagner | SystemBC C2 Server Reveals 1,570+ Victims in The Gentlemen Ransomware Operation  - The Hacker News
Attack Feeds
SystemBC C2 Server Reveals 1,570+ Victims in The Gentlemen Ransomware Operation  – The Hacker News
April 21, 2026

Leave a Reply