Severity: critical

Malicious Package

electorn

Overview

electorn was removed from the npm registry for containing malicious code. Upon installation the package runs a preinstall script that writes a public comment on GitHub containing the following information:

  • IP and IP-based geolocation
  • home directory name
  • local username

Remediation

Remove the package from your environment. The malicious packages have been removed from the npm registry and the leaked content removed from GitHub.

Have content suggestions? Send them to [email protected]

Advisory timeline

  1. published

    Advisory Published
    Oct 1st, 2020
  2. reported

    Reported by Unknown
    Oct 1st, 2020