BotBeat
...
← Back

> ▌

N/AN/A
INDUSTRY REPORTN/A2026-03-23

CanisterWorm: Supply Chain Attack Compromises 29+ npm Packages Through Publisher Account Takeovers

Key Takeaways

  • ▸A new supply chain worm named CanisterWorm compromised 29+ npm packages by exploiting publisher account vulnerabilities
  • ▸The attack leveraged ICP (Internet Computer Protocol) canisters for command and control infrastructure, representing an novel abuse of blockchain technology
  • ▸Multiple publisher accounts (@emilgroup, @teale.io) were successfully compromised, allowing attackers to inject malicious code across their entire package portfolios
Source:
Hacker Newshttps://socket.dev/blog/trivy-docker-images-compromised↗

Summary

A sophisticated supply chain attack dubbed CanisterWorm has compromised multiple npm package publishers, affecting 29+ packages across the ecosystem. The attack exploited compromised publisher accounts associated with @emilgroup and @teale.io, using an Internet Computer Protocol (ICP) canister as an infrastructure component to deliver follow-on payloads to affected systems. The worm's modular design allowed it to propagate across multiple packages and establish persistent backdoor access, demonstrating the expanding threat landscape for open-source software dependencies. This incident underscores the critical vulnerabilities in the npm supply chain, where a single compromised publisher account can impact dozens of downstream projects and their users.

  • The incident highlights critical gaps in npm ecosystem security and the need for stronger publisher authentication and package integrity verification
CybersecurityMisinformation & DeepfakesOpen Source

More from N/A

N/AN/A
POLICY & REGULATION

China's Universities Cut 12,000 'Obsolete' Degrees Amid Race to Embrace AI Era

2026-06-16
N/AN/A
POLICY & REGULATION

Argentina Proposes 'Non-Human Corporations' Legislation to Enable AI-Owned Companies

2026-06-15
N/AN/A
POLICY & REGULATION

New York Becomes First State to Require AI 'Synthetic Performer' Labels in Ads

2026-06-10

Comments

Suggested

AppleApple
PRODUCT LAUNCH

Apple Container 1.0 Reaches Stable Release: Native macOS Docker Alternative Now GA

2026-07-04
LLM Agent EcosystemLLM Agent Ecosystem
RESEARCH

Researchers Expose Critical Payload-Less Attack on LLM Agent Supply Chains

2026-07-04
OpenAIOpenAI
INDUSTRY REPORT

Investigation Uncovers AI-Generated Deepfakes in Lily Jay Foundation Charity Fraud

2026-07-04
← Back to news
© 2026 BotBeat
AboutPrivacy PolicyTerms of ServiceContact Us