Malicious Package Affecting colors_express package, versions *
Threat Intelligence
Exploit Maturity
Mature
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-JS-COLORSEXPRESS-2807805
- published 4 May 2022
- disclosed 4 May 2022
- credit Ankita Lamba, Ax Sharma
How to fix?
Avoid using all malicious instances of the colors_express
package.
Overview
colors_express is a malicious package. This package uses "typosquatting" to bait unaware users to install it. This package contains a Discord info-stealing malware code that iterates over local storage folders of common browsers (Chrome, Opera, Brave, Yandex) and Discord-specific folders.
References
CVSS Scores
version 3.1