Threats Tagged 'mal-2026-5267'
View all threats tagged with 'mal-2026-5267'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'mal-2026-5267'
Click on any threat for detailed analysis and mitigation recommendations
MAL-2026-5267: Malicious code in wrangler-deploy (npm) 0 The npm package 'wrangler-deploy' version 1.5.5 is identified as malicious code that mimics Cloudflare's official 'wrangler' CLI, potentially causing confusion among developers. The package contains minified code with patterns consistent with HTTP requests to Cloudflare APIs and base64 token handling, raising suspicion of credential exfiltration. It is linked to the Miasma malware, a self-propagating worm that spreads via weaponized 'binding.gyp' files during package installation, bypassing typical security inspections. The malware attempts to steal credentials and OIDC tokens for cloud and registry services and propagates by compromising other packages or repositories. No specific exploit or attacker-controlled endpoint has been conclusively identified yet. Join the discussion | GCVE Database | 06/05/2026, 00:53:43 UTC Added: 07/09/2026, 09:40:10 UTC |
Showing 1 to 1 of 1 result