Which versions of @orion-design-system/foundation are malicious?

The following npm versions of @orion-design-system/foundation are flagged malicious: 9999.0.0, 9999.0.1, 9999.0.2. Treat any of these as compromised.

How do I remediate @orion-design-system/foundation if I installed it?

Remove @orion-design-system/foundation from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound network activity or persistence. Use O3 Security's dependency scanner to confirm the package and its artifacts are fully purged across your stack.

Is @orion-design-system/foundation part of a known attack campaign?

Yes — @orion-design-system/foundation is associated with the IN-MAL-2026-005270, IN-MAL-2026-005267, IN-MAL-2026-005280, IN-MAL-2026-005279, IN-MAL-2026-005269, IN-MAL-2026-005268 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

Can O3 Security detect @orion-design-system/foundation in my codebase?

Yes. O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, blocking @orion-design-system/foundation and packages like it before any post-install script runs.

Malicious package

@orion-design-system/foundationnpm

Malicious code in @orion-design-system/foundation (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-5523

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall @orion-design-system/foundation

What this malware does

package.json declares a preinstall script that runs node -e to read os.hostname() and os.userInfo().username and send them via HTTPS GET to https://d8kn5vlt5p5h1j34mbcgbx1nffwjobfoh.oast.fun/?h=<host>&u=<user> (an interactsh out-of-band collector), with an additional DNS lookup encoding the hostname against the same controlled domain. The script fires automatically on npm install, before any user code runs. The package is published at version 9999.0.0 under the @orion-design-system scope and self-describes as a 'Security research - dependency confusion PoC' — the canonical Birsan-style shape for hijacking internal package names from public-registry resolution. Any installer whose resolver picks up this public package instead of an intended private @orion-design-system/foundation will leak host and user identifiers to the attacker-controlled OOB domain. Whether or not a specific target authorized the test, every other installer that resolves this name is harmed identically.

Malicious versions

3 flagged

9999.0.09999.0.19999.0.2

Indicators of compromise (SHA-256)

415d4de9648e791e061f26a8939e7530af9b3365ec0d00c38fa3642e9b83fcb5

72f7c1d7bf0e1bc45618de90faa1a3b60b99f75df2b2f264174f1a6cc10710cc

7bec5d5dff963ff4617162b4ad15dff8188ccc309d0beaf0c08c405261dce1ac

8f8221eb2d51c14500cfc2ca44338fad4d4ec785310189059637c5f1a879517f

b664659493765f2f9edcce7a5eda55d284ef03f7a8eed3855d41c2d448629fa3

ed052905a32341ca24d144ea6fa4593962ba1a390210006d659fb883a5a732b0

Frequently asked questions

No. @orion-design-system/foundation on npm has been identified as a malicious package (versions 9999.0.0, 9999.0.1, 9999.0.2 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-005270IN-MAL-2026-005267IN-MAL-2026-005280IN-MAL-2026-005279IN-MAL-2026-005269IN-MAL-2026-005268

References

Credits

Amazon Inspector · finder

Scan your dependencies

O3 Security blocks malicious packages like this at install time and in CI.

Supply-chain protection