Hacker News new | past | comments | ask | show | jobs | submit login
Tell HN: Russian antivirus flags NPM package as malicious for logged message
2 points by bluelightning2k on Oct 3, 2022 | hide | past | favorite | 1 comment
The popular npm package es5-shim checks location on install and logs a Russian call for peace for Russian users.

Kaspersky (Russian AV) flags this file as a virus.

https://github.com/medikoo/es5-ext/blob/main/_postinstall.js




This is almost certainly because of the malware targeting Russian IPs in a similar format.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: