{"id":260591,"date":"2026-05-29T04:10:00","date_gmt":"2026-05-29T08:10:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/29\/ai-generated-npm-malware-leaks-its-own-github-token\/"},"modified":"2026-05-31T21:35:09","modified_gmt":"2026-06-01T01:35:09","slug":"ai-generated-npm-malware-leaks-its-own-github-token","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/29\/ai-generated-npm-malware-leaks-its-own-github-token\/","title":{"rendered":"AI-Generated npm Malware Leaks Its Own GitHub Token"},"content":{"rendered":"<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/ai-npm-malware-leaks-github-token\/\">AI-Generated npm Malware Leaks Its Own GitHub Token<\/a><\/p>\n<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/ai-npm-malware-leaks-github-token\/\">https:\/\/www.infosecurity-magazine.com\/news\/ai-npm-malware-leaks-github-token\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-29 04:10:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.infosecurity-magazine.com\">www.infosecurity-magazine.com<\/a><\/p>\n<p>A malicious npm package has been caught leaking its own hardcoded GitHub token, a blunder that let researchers watch the operator&#8217;s data theft unfold from the inside.<\/p>\n<p>The package, named mouse5212-super-formatter, was identified by OX Security according to new analysis from the firm&#8217;s research team. It functions as an infostealer, quietly reading files from a victim&#8217;s machine and uploading them to a repository the attacker controls.<\/p>\n<p>The package had been downloaded 676 times and remained live on npm at the time of OX Security&#8217;s writeup on Wednesday, though it has since been removed.<\/p>\n<h2><strong>Disguised as a Sync Utility<\/strong><\/h2>\n<p>On the surface, the script presents itself as an internal &#8220;archive deployment sync&#8221; tool that checks a GitHub repository and records a network status snapshot.<\/p>\n<p>In practice, OX Security found, the post-install code authenticates to GitHub, creates a repository if one does not exist, then recursively walks a local directory and uploads every file through the GitHub Contents API.<\/p>\n<p>To blend in, the malware stores stolen files under a randomly named folder for each run and writes a fake &#8220;network connections&#8221; log so the activity resembles diagnostics rather than theft. Comments and commit messages were kept deliberately bland to avoid drawing attention.<\/p>\n<p>The fatal flaw was a hardcoded fallback token left in the code. Because the malware carried the operator&#8217;s own GitHub credential, researchers could trace the exfiltration directly, observing around seven theft sessions in the attacker&#8217;s repository, most of which appeared to be the operator testing the tool.<\/p>\n<h2><strong>A Sign of Sloppier Threats<\/strong><\/h2>\n<p>OX Security framed the package as an example of malware generated with AI by an operator who did not grasp basic operational security.<\/p>\n<p>The GitHub account behind it had been created only hours before the first upload and was deleted once the activity was exposed.<\/p>\n<p>The episode points to a wider shift. As the effort needed to produce working malicious code falls, researchers&#8230;<\/p>\n<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/ai-npm-malware-leaks-github-token\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>AI-Generated npm Malware Leaks Its Own GitHub Token https:\/\/www.infosecurity-magazine.com\/news\/ai-npm-malware-leaks-github-token\/ Publish Date: 2026-05-29 04:10:00 Source Domain:&#8230;<\/p>\n","protected":false},"author":1,"featured_media":260592,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/assets.infosecurity-magazine.com\/webpage\/og\/68974c2a-f08c-4fe7-8c13-cf168e58c25b.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,36,32],"class_list":["post-260591","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-infostealer","tag-malware"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/260591"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=260591"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/260591\/revisions"}],"predecessor-version":[{"id":260593,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/260591\/revisions\/260593"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/260592"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=260591"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=260591"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=260591"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}