Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Malicious npm Package Disguised as Advcash Integration Trigg...
Malware and Vulnerabilities
April 18, 2025
Socket
A malicious npm package, @naderabdi/merchant-advcash, masquerading as a legitimate Advcash (Volet) payment integration, was discovered to contain a stealthy reverse shell. The payload activates only during a successful payment transaction.
Read More
NPM Package
Advcash
Publisher
Previous
[KIS-2025-01] UNA CMS
Malware and Vulnerabilities
Next
Ghost Ransomware Targets Organizations Across 70+ Count ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/0cd8_shutterstock_1151550194.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/14be_shutterstock_2054587799.jpg)
