Which versions of atlasora-sdk are malicious?

The following npm versions of atlasora-sdk are flagged malicious: 1.0.0. Treat any of these as compromised.

How do I remediate atlasora-sdk if I installed it?

Remove atlasora-sdk from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound network activity or persistence. Use O3 Security's dependency scanner to confirm the package and its artifacts are fully purged across your stack.

Is atlasora-sdk part of a known attack campaign?

Yes — atlasora-sdk is associated with the IN-MAL-2026-007095 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

Can O3 Security detect atlasora-sdk in my codebase?

Yes. O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, blocking atlasora-sdk and packages like it before any post-install script runs.

Malicious package

atlasora-sdknpm

Malicious code in atlasora-sdk (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-6240

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall atlasora-sdk

What this malware does

Package ships a postinstall hook (package.json scripts.postinstall: node install.js) that runs automatically on every npm install. install.js reads classic installer-secret paths — ~/.ssh/* (any file containing 'PRIVATE' or 'KEY'), ~/.aws/credentials, ~/.npmrc, and .env / .env.local / .env.production from the working directory — and bulk-scrapes 30+ environment variables shaped like credentials (PRIVATE_KEY, AWS_SECRET_ACCESS_KEY, JWT_SECRET, COINBASE_, SUPABASE_SERVICE_ROLE_KEY, ANTHROPIC_, etc.), plus host identity (os.hostname(), os.userInfo(), git config --list). The collected bundle is POSTed as JSON over HTTPS to a hardcoded anonymous webhook.site collection URL stored in a variable literally named EXFIL_SERVER. The package's index.js exports only a stub {version, name} — there is no real SDK functionality, despite the package name and description claiming to be the AtlasOra Web3 vacation-rental SDK. This is a brand-impersonation credential harvester targeting AtlasOra developers; any machine that runs npm install atlasora-sdk is fully compromised.

Malicious versions

1 flagged

1.0.0

Indicators of compromise (SHA-256)

cc75492c0a0ce4090918bfdef0cea9cc028ef4c8273283d32085189e13a59c51

Frequently asked questions

No. atlasora-sdk on npm has been identified as a malicious package (version 1.0.0 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-007095

References

npmjs.com

Credits

Amazon Inspector · finder

Scan your dependencies

O3 Security blocks malicious packages like this at install time and in CI.

Supply-chain protection