{"id":8849,"date":"2026-07-11T19:11:42","date_gmt":"2026-07-11T19:11:42","guid":{"rendered":"https:\/\/news.cybertechworld.co.in\/index.php\/2026\/07\/11\/compromised-jscrambler-8-14-0-npm-release-drops-rust-infostealer-during-install\/"},"modified":"2026-07-11T19:11:42","modified_gmt":"2026-07-11T19:11:42","slug":"compromised-jscrambler-8-14-0-npm-release-drops-rust-infostealer-during-install","status":"publish","type":"post","link":"https:\/\/news.cybertechworld.co.in\/index.php\/2026\/07\/11\/compromised-jscrambler-8-14-0-npm-release-drops-rust-infostealer-during-install\/","title":{"rendered":"Compromised jscrambler 8.14.0 npm Release Drops Rust Infostealer During Install"},"content":{"rendered":"<p>\u200bVersion\u00a08.14.0\u00a0of the jscrambler npm package shipped with a malicious\u00a0preinstall\u00a0hook that silently drops and runs a native infostealer during installation, one build each for Windows, macOS, and Linux.<\/p>\n<p>Published on July 11, 2026, it needs no import and no CLI call. Installing 8.14.0 is enough to run\u00a0it.<\/p>\n<p>Socket flagged the release\u00a0six minutes after it was\u00a0Version\u00a08.14.0\u00a0of the jscrambler npm package shipped with a malicious\u00a0preinstall\u00a0hook that silently drops and runs a native infostealer during installation, one build each for Windows, macOS, and Linux.<\/p>\n<p>Published on July 11, 2026, it needs no import and no CLI call. Installing 8.14.0 is enough to run\u00a0it.<\/p>\n<p>Socket flagged the release\u00a0six minutes after it was\u00a0\u00a0The Hacker News<\/p>","protected":false},"excerpt":{"rendered":"<p>\u200bVersion\u00a08.14.0\u00a0of the jscrambler npm package shipped with a malicious\u00a0preinstall\u00a0hook that silently drops and runs a native infostealer during installation, one build each for Windows, macOS, and Linux. Published on July 11, 2026, it needs no import and no CLI call. Installing 8.14.0 is enough to run\u00a0it. Socket flagged the release\u00a0six minutes after it was\u00a0Version\u00a08.14.0\u00a0of the&hellip;&nbsp;<a href=\"https:\/\/news.cybertechworld.co.in\/index.php\/2026\/07\/11\/compromised-jscrambler-8-14-0-npm-release-drops-rust-infostealer-during-install\/\" class=\"\" rel=\"bookmark\">Read More &raquo;<span class=\"screen-reader-text\">Compromised jscrambler 8.14.0 npm Release Drops Rust Infostealer During Install<\/span><\/a><\/p>\n","protected":false},"author":0,"featured_media":8850,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"neve_meta_sidebar":"","neve_meta_container":"","neve_meta_enable_content_width":"","neve_meta_content_width":0,"neve_meta_title_alignment":"","neve_meta_author_avatar":"","neve_post_elements_order":"","neve_meta_disable_header":"","neve_meta_disable_footer":"","neve_meta_disable_title":"","_themeisle_gutenberg_block_has_review":false,"footnotes":""},"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts\/8849"}],"collection":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/comments?post=8849"}],"version-history":[{"count":0,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts\/8849\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/media\/8850"}],"wp:attachment":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/media?parent=8849"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/categories?post=8849"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/tags?post=8849"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}