National Cyber Warfare Foundation (NCWF)

Rogue npm Packages Mimic Telegram Bot API to Plant SSH Backdoors on Linux Systems
0 user ratings		2025-04-19 16:19:09
milo
Blue Team (CND)
Cybersecurity researchers have uncovered three malicious packages in the npm registry that masquerade as a popular Telegram bot library but harbor SSH backdoors and data exfiltration capabilities.
The packages in question are listed below -

node-telegram-utils (132 downloads)
node-telegram-bots-api (82 downloads)
node-telegram-util (73 downloads)


According to supply chain



Source: TheHackerNews
Source Link: https://thehackernews.com/2025/04/rogue-npm-packages-mimic-telegram-bot.html

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Blue Team (CND)


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.