Which versions of yandex-geobase are malicious?

The following npm versions of yandex-geobase are flagged malicious: 2.1.0, 2.1.2, 2.2.0, 2.9.0, 3.9.0. Treat any of these as compromised.

How do I remediate yandex-geobase if I installed it?

yandex-geobase establishes remote access, so treat any host that installed it as fully compromised. Isolate the machine, remove the package, rotate all credentials it could reach, and rebuild from a trusted image rather than cleaning in place — a backdoor may have planted additional persistence.

I already installed yandex-geobase — how do I know if it already compromised me?

If yandex-geobase was ever installed, its post-install/runtime payload may have already executed. O3's L7 egress monitoring and runtime eBPF sensors detect the credential exfiltration or command-and-control callback after install and block the malicious outbound channel, so you catch and contain the actual compromise — not just the presence of the package.

Is yandex-geobase part of a known attack campaign?

Yes — yandex-geobase is associated with the IN-MAL-2026-007720, IN-MAL-2026-007716, IN-MAL-2026-007717, IN-MAL-2026-007719, IN-MAL-2026-007718 campaign. Packages in the same campaign often share infrastructure and payloads, so check whether any related packages are also in your dependency tree.

How do I find yandex-geobase across my projects, lockfiles, and CI pipelines?

Scan your lockfiles (package-lock.json, pnpm-lock.yaml, yarn.lock, requirements.txt, poetry.lock, etc.) and build artifacts for yandex-geobase (5 malicious versions). O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, flagging yandex-geobase across your stack and pipelines.

Malicious package

yandex-geobasenpm

Malicious code in yandex-geobase (npm) Remove it immediately and rotate any exposed credentials.

MAL-2026-6574

Immediate action

Remove the package, then rotate any secrets the build/runtime could reach.

npm uninstall yandex-geobase

What this malware does

[email protected] squats the internal-sounding name 'yandex-geobase' and ships a postinstall script that performs an HTTP GET to a hardcoded bare-IP endpoint (http://130.49.177.51:18080/p/dc-20260627-yandex-geobase) on every install. The beacon transmits the package name, version, and a campaign identifier, confirming successful code execution inside the installer's build environment to a third-party host. The package self-describes as a 'Dependency confusion security test placeholder', but a self-label of 'PoC' does not change the installer-facing behavior: any build pipeline that resolves this public name in place of an internal Yandex package will silently signal an external bare-IP host that attacker-controlled code ran inside the installer's environment. The destination is a bare IP on a non-standard port (not a registry, vendor domain, or telemetry endpoint), which is consistent with dependency-confusion canary infrastructure rather than legitimate package behavior.

Malicious versions

5 flagged

2.1.02.1.22.2.02.9.03.9.0

Indicators of compromise (SHA-256)

1afe70f3f7794a4ef230823c92bc635e3fd70c82342bd41c1df1bbcd6105a8ea

cc198965d3b086a519c0027b94c392f00c6ab0246feb11694af1c43b12236a70

1f6219d513896736aee31ce33719d6ae2d1f5b03293ecdfe884d944bbb3eb99a

69bb1d25ef0863fb16ce33e0536266243a6e007fa71d36303205fb0f8d71c110

a16ea7792b5f438d3338f62a9d3d801c7e30892f1da7c75e0f9fd4e93af4c047

Detection & response playbook

Backdoor / remote access

Find it
Scan your lockfiles (package-lock.json, pnpm-lock.yaml, yarn.lock, requirements.txt, poetry.lock, etc.) and build artifacts for yandex-geobase (5 malicious versions). O3 Security's supply-chain scanner checks every dependency against known-malicious package intelligence at install time and in CI, flagging yandex-geobase across your stack and pipelines.
If you installed it — respond
yandex-geobase establishes remote access, so treat any host that installed it as fully compromised. Isolate the machine, remove the package, rotate all credentials it could reach, and rebuild from a trusted image rather than cleaning in place — a backdoor may have planted additional persistence.
Did it already run?
If yandex-geobase was ever installed, its post-install/runtime payload may have already executed. O3's L7 egress monitoring and runtime eBPF sensors detect the credential exfiltration or command-and-control callback after install and block the malicious outbound channel, so you catch and contain the actual compromise — not just the presence of the package.
How O3 protects you
O3 blocks yandex-geobase before install through its supply-chain scanner, and if it has already run, detects and severs the exfiltration or C2 callback at runtime through L7 egress monitoring and eBPF.

Frequently asked questions

No. yandex-geobase on npm has been identified as a malicious package (versions 2.1.0, 2.1.2, 2.2.0, 2.9.0, 3.9.0 flagged). It should be removed immediately — do not install or keep it in your dependency tree.

Campaign

IN-MAL-2026-007720IN-MAL-2026-007716IN-MAL-2026-007717IN-MAL-2026-007719IN-MAL-2026-007718

References

Credits

Amazon Inspector · finder

Detect & block this

O3 blocks yandex-geobase-class packages before install and in CI — and if it already ran, its runtime egress monitoring catches the C2 callback and severs the channel.

Malware detection Runtime egress monitoring