Which versions of flowdefi are malicious?

The following npm versions of flowdefi are flagged malicious: 9.9.9. Treat any of these as compromised.

How do I remediate flowdefi if I installed it?

Remove flowdefi from your project and lockfile, then assume any secrets accessible to the build or runtime were exposed: rotate API keys, tokens, and credentials, and audit for unexpected outbound network activity or persistence. Use O3 Security's dependency scanner to confirm the package and its artifacts are fully purged across your stack.

Is flowdefi part of a known attack campaign?

Yes — flowdefi is associated with the IN-MAL-2026-006608, IN-MAL-2026-006607 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

Can O3 Security detect flowdefi in my codebase?

Yes. O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, blocking flowdefi and packages like it before any post-install script runs.

Malicious package

flowdefinpm

Malicious code in flowdefi (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-5806

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall flowdefi

What this malware does

On npm install, the package's preinstall hook executes node index.js, which collects the host's os.hostname(), os.userInfo().username, current working directory, and all environment variables whose names match a credential-shaped regex (key|seed|secret|token|private|mnemonic|password|blockfrost|redis|telegram|batcher). The harvested data is POSTed as JSON to the bare IPv4 endpoint https://2.25.140.71:8443/surflending/npm-confusion. The package metadata is a stub (description: "flowdefi SDK", no repository, no author, version pinned to 9.9.9 — a classic dependency-confusion high-version trick), and the exfil path is literally named /surflending/npm-confusion, indicating a dependency-confusion attack targeting an internal package named flowdefi, likely belonging to a Cardano/DeFi project (the regex specifically targets Cardano-ecosystem secrets such as blockfrost, mnemonic, seed, batcher). Installing this package on a developer or CI machine will leak wallet seed phrases, private keys, API tokens, and other secrets to the attacker.

Malicious versions

1 flagged

9.9.9

Indicators of compromise (SHA-256)

97aab6ad6cd465ed64cf6bb5151508a6fac2ba7b26b98d5732f0ed5d0c594d13

b5e410fabd766facf41c970113c2a0a1b06b67b82521ffae20a32328cd74994e

Frequently asked questions

No. flowdefi on npm has been identified as a malicious package (version 9.9.9 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-006608IN-MAL-2026-006607

References

npmjs.com

Credits

Amazon Inspector · finder

Scan your dependencies

O3 Security blocks malicious packages like this at install time and in CI.

Supply-chain protection