{"id":"MAL-2025-48865","summary":"Malicious code in sessionfiy (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n","aliases":["SNYK-JS-SESSIONFIY-13561414"],"modified":"2025-12-02T10:14:46.766334Z","published":"2025-10-23T19:46:22Z","database_specific":{"malicious-packages-origins":[{"id":"RLMA-2025-05505","versions":["2.2.8"],"import_time":"2025-10-27T18:09:05.724156612Z","sha256":"2038a3b55639197809b55ae05c525d8b715325a862e6aa0d2b9d5ff774377611","source":"reversing-labs","modified_time":"2025-10-23T19:46:22Z"},{"id":"RLUA-2025-05944","import_time":"2025-12-02T09:10:11.815015007Z","sha256":"48c4ef8e551402544a1c322430f2e88b403a7b6432943aacd55779bd338522b4","source":"reversing-labs","modified_time":"2025-12-01T13:25:10Z"}]},"references":[{"type":"ARTICLE","url":"https://socket.dev/blog/north-korea-contagious-interview-campaign-338-malicious-npm-packages"},{"type":"ADVISORY","url":"https://security.snyk.io/vuln/SNYK-JS-SESSIONFIY-13561414"}],"affected":[{"package":{"name":"sessionfiy","ecosystem":"npm","purl":"pkg:npm/sessionfiy"},"versions":["2.2.8"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/sessionfiy/MAL-2025-48865.json"}}],"schema_version":"1.7.3","credits":[{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}