What does the @newline53/newline-ts-sdk malware do?

On `npm install`, the postinstall hook (`node install.js`) collects `os.hostname()` and `os.userInfo().username` along with the package name, encodes them as a DNS subdomain of `mjcfux88wjjahplabxdauc6bl.canarytokens.com`, and beacons out via DNS resolution (`dns.lookup`/`dns.resolve`) and HTTP requests (shelled `curl`/`wget` to `http:// .mjcfux88wjjahplabxdauc6bl.canarytokens.com`). The package has no real functionality — `index.js` is `module.exports = {}` — and `package.json` carries placeholder author metadata (a 32-char hex string with no homepage or repository). The structure (empty main, recon-only postinstall, canarytoken endpoint) is the canonical dependency-confus

Which versions of @newline53/newline-ts-sdk are malicious?

The following npm versions of @newline53/newline-ts-sdk are flagged malicious: 1.0.0, 1.0.1, 1.0.2. Treat any of these as compromised.

How do I remediate @newline53/newline-ts-sdk if I installed it?

@newline53/newline-ts-sdk is built to steal secrets, so assume every credential the build or runtime could read is compromised. Remove it from your project and lockfile, then rotate ALL exposed secrets — npm/registry tokens, cloud keys, CI/CD secrets, SSH keys, and any .env values — from a known-clean machine. Audit logs for unauthorized use of those credentials.

I already installed @newline53/newline-ts-sdk — how do I know if it already compromised me?

If @newline53/newline-ts-sdk was ever installed, its post-install/runtime payload may have already executed. O3's L7 egress monitoring and runtime eBPF sensors detect the credential exfiltration or command-and-control callback after install and block the malicious outbound channel, so you catch and contain the actual compromise — not just the presence of the package.

Is @newline53/newline-ts-sdk part of a known attack campaign?

Yes — @newline53/newline-ts-sdk is associated with the IN-MAL-2026-004374, IN-MAL-2026-004372, IN-MAL-2026-004375, IN-MAL-2026-004370, IN-MAL-2026-004371, IN-MAL-2026-004373 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

How do I find @newline53/newline-ts-sdk across my projects, lockfiles, and CI pipelines?

Scan your lockfiles (package-lock.json, pnpm-lock.yaml, yarn.lock, requirements.txt, poetry.lock, etc.) and build artifacts for @newline53/newline-ts-sdk (3 malicious versions). O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, flagging @newline53/newline-ts-sdk across your stack and pipelines.

Malicious package

@newline53/newline-ts-sdknpm

Malicious code in @newline53/newline-ts-sdk (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-4267

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall @newline53/newline-ts-sdk

What this malware does

On npm install, the postinstall hook (node install.js) collects os.hostname() and os.userInfo().username along with the package name, encodes them as a DNS subdomain of mjcfux88wjjahplabxdauc6bl.canarytokens.com, and beacons out via DNS resolution (dns.lookup/dns.resolve) and HTTP requests (shelled curl/wget to http://<host-username-pkg>.mjcfux88wjjahplabxdauc6bl.canarytokens.com). The package has no real functionality — index.js is module.exports = {} — and package.json carries placeholder author metadata (a 32-char hex string with no homepage or repository). The structure (empty main, recon-only postinstall, canarytoken endpoint) is the canonical dependency-confusion probe: an attacker publishes a public npm package matching an internal scope name to detect whether private builds inside a target organization resolve to and install the public name. The exfiltrated hostname/username identifies the victim environment to the attacker.

The OpenSSF Package Analysis project identified '@newline53/newline-ts-sdk' @ 1.0.1 (npm) as malicious.

It is considered malicious because:

The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.

Malicious versions

3 flagged

1.0.01.0.11.0.2

Indicators of compromise (SHA-256)

5410fe1569b6b68356a714bec6729f19f05c94faa3ee858c58df8a35345f5eca

850e524520d9a4f99a9db2a9ffbbe932d1fe9256f89661c2ab33840f66dedbcd

1ebfb513ccab4c26eb32c705dff22c1d406b63b808a892a412b96e83a82cbc57

475a7ac4130ef9c168565439f8cac230fce87b1d59bc116caec6c712f3a5dc60

66e2e3fc61650bd0215066af2b21837ff23cb044ab56e385401878cfbec7d8b6

6e3fd64e82a33680c9545e4065e71a2990350d13c0182777df8c094c9514284e

86fe18bd38e9f6f5b1f5f4278284e76874c2f5781c9bb5396a230a5d9314a0c2

aad6652e2eb0c57558109b87ff36a64fdea033ec256d4aa78268c6f49afba499

Detection & response playbook

Credential / info stealer

Find it
Scan your lockfiles (package-lock.json, pnpm-lock.yaml, yarn.lock, requirements.txt, poetry.lock, etc.) and build artifacts for @newline53/newline-ts-sdk (3 malicious versions). O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, flagging @newline53/newline-ts-sdk across your stack and pipelines.
If you installed it — respond
@newline53/newline-ts-sdk is built to steal secrets, so assume every credential the build or runtime could read is compromised. Remove it from your project and lockfile, then rotate ALL exposed secrets — npm/registry tokens, cloud keys, CI/CD secrets, SSH keys, and any .env values — from a known-clean machine. Audit logs for unauthorized use of those credentials.
Did it already run?
If @newline53/newline-ts-sdk was ever installed, its post-install/runtime payload may have already executed. O3's L7 egress monitoring and runtime eBPF sensors detect the credential exfiltration or command-and-control callback after install and block the malicious outbound channel, so you catch and contain the actual compromise — not just the presence of the package.
How O3 protects you
O3 blocks @newline53/newline-ts-sdk before install through its supply-chain scanner, and if it has already run, detects and severs the exfiltration or C2 callback at runtime through L7 egress monitoring and eBPF.

Frequently asked questions

No. @newline53/newline-ts-sdk on npm has been identified as a malicious package (versions 1.0.0, 1.0.1, 1.0.2 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-004374IN-MAL-2026-004372IN-MAL-2026-004375IN-MAL-2026-004370IN-MAL-2026-004371IN-MAL-2026-004373

References

Credits

Amazon Inspector · finder
OpenSSF: Package Analysis · finder

Detect & block this

O3 blocks @newline53/newline-ts-sdk-class packages before install and in CI — and if it already ran, its runtime egress monitoring catches the credential exfiltration and severs the channel.

Malware detection Runtime egress monitoring