VYPR

npm · Malicious package advisory

Malware

prebid-universal-creative

MAL-2025-47027

Malicious code in prebid-universal-creative (npm)

Details


---
_-= Per source details. Do not edit below this line.=-_

## Source: google-open-source-security (28a458913f2a945444606a3dd030b993b23a6388274a01a2ecdea26478e1b1d9)
This package was compromised and malicious code added as part of a phishing
campaign.

Compromised versions (1)

  • 1.17.3

Any computer that installed or ran a compromised version should be considered fully compromised. Rotate every secret on that machine from a clean environment.