Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

Trivy

CanisterWorm self propagates in npm after Trivy supply chain compromise

Cybercrime, News, Research, Vulnerabilities

March 21, 2026

A self propagating worm called CanisterWorm followed a Trivy supply chain compromise to infect 47 npm packages. The worm uses an ICP canister dead drop and stolen npm tokens to publish malicious package versions.

About
Editorial Policy
Privacy
Contact