A malware campaign has been discovered within the npm package os-info-checker-es6. Initially appearing benign after being published in March 2025, it quickly evolved, using complex Unicode steganography and evasion techniques to avoid detection. It gained further sophistication in May, using Google Calendar as an intermediary dropper and executed payloads. The malware has been downloaded 655 times weekly, indicating its potential reach within the ecosystem.
Malware Defense 101 – Identifying and Removing Modern Threats
Cybersecurity threats in 2025 have become more sophisticated, with malware leveraging AI, evasion tactics, and polymorphic code. Data-stealing malware dominates, increasing by 180% in 2024.
