Secure Bulletin Navigating the cyber sea with knowledge
Home > Tag > SafeDep
#SafeDep

Malicious npm Package forge-jsxy Pushes 22 Versions in 22 Days to Steal Crypto Wallets and Deploy Persistent Backdoor

29 May 2026  |  dark6  |  Malware

The npm package forge-jsxy quietly stole cryptocurrency wallet keys, browser credentials, and developer data across Windows, macOS, and Linux — publishing 22 malicious versions in 22 days, and...

>> read more