Massive React Native npm Breach: Over 1 Million Weekly Downloads at Risk

Listen to this Post

Featured Image

A Wake-Up Call for the JavaScript Community

A critical supply chain attack has shaken the JavaScript ecosystem, specifically targeting the React Native developer community. In what’s being called one of the most damaging npm attacks of 2025, malicious actors compromised 16 highly popular packages with over a million weekly downloads. The breach has security experts alarmed, not only because of its scale but also due to the sophistication of the deployed Remote Access Trojan (RAT). From obfuscated payloads hiding in plain sight to persistent infections hijacking development and production environments, the attack has left a wide footprint. Developers, DevOps engineers, and security teams are urged to take immediate action.

React Native Supply Chain Attack: What Happened

On June 6, 2025, security analysts detected unusual behavior in a React Native npm package named @react-native-aria/[email protected], which had not been updated since October 2023. This flagged version triggered a deeper investigation that revealed an elaborate cyberattack. The attackers had used whitespace manipulation to hide malicious code from plain view and static analysis tools. What followed was a disturbing discovery — 15 additional packages in the same ecosystem had been compromised with similar Remote Access Trojan (RAT) payloads. Among these were heavily used packages like @react-native-aria/utils, @react-native-aria/overlays, and @gluestack-ui/utils, each with tens of thousands of weekly installs.

The RAT embedded in these packages is an evolved version of malware seen in a previous attack in May 2025, but now includes enhancements like automated dependency installation and advanced system fingerprinting. Once the infected package is installed, it installs additional tools like axios and socket.io-client, writes malicious files to the %LOCALAPPDATA%\Programs\Python\Python3127 path (targeting Windows), and initiates communication with a command-and-control (C2) server. These servers, located at 136.0.9[.]8 and 85.239.62[.]36, are accessed over uncommon ports like 3306 and 27017 to avoid detection.

The malware collects extensive system data — operating system info, node versions, script paths, public IPs — and grants remote command execution capability to attackers. This includes recursive file access and exfiltration via both HTTP POST and socket.io channels. It even expands the host’s Node module paths to dig deeper into the system and increase its grip on infected machines. With new C2 infrastructures in play and obfuscation techniques that defeat common scanning methods, blocking or dismantling the attack has become increasingly complex.

This breach leaves CI/CD environments and developer systems highly vulnerable to credential theft, lateral movement, and ransomware deployment. Security experts recommend immediate audits, traffic blocking to known C2 addresses, and complete system reimaging. The affected packages and versions are listed in detail, making this incident one of the most traceable yet far-reaching npm infections in recent history.

What Undercode Say:

This attack demonstrates a troubling evolution in supply chain threats targeting open-source ecosystems, especially npm. While previous breaches have focused on injecting malicious code into obscure libraries, this campaign marks a shift — hitting central, widely trusted packages with massive weekly download counts. The fact that these packages were dormant for months made them low-profile yet high-impact targets. Attackers banked on developer trust and automated installation mechanisms to propagate their malware silently and rapidly.

The use of whitespace manipulation to hide malicious code from the editor and scanners is especially concerning. It reflects a growing trend among attackers to exploit not just code but also developer habits and blind spots in review pipelines. This incident also shines a light on the security debt within open-source repositories. Many packages go unmonitored for long periods, making them perfect attack surfaces. With no active maintenance, a stealthy update can go unnoticed until significant damage has been done.

The persistent focus on Windows platforms through the use of Python-based payload directories suggests targeted design. This is not random malware — it’s engineered with CI/CD environments, enterprise Windows deployments, and developer workstations in mind. By collecting system metadata and connecting to segmented C2 infrastructures, the malware also adapts in real-time, allowing attackers to launch customized exploits based on the infected host.

What’s also remarkable is the calculated use of legacy RAT frameworks. Instead of reinventing the wheel, attackers have improved upon previously successful models, combining familiarity with advanced C2 agility and improved stealth. Their rotation of IP addresses, use of non-standard ports, and deep packet obfuscation makes this a highly resilient malware campaign.

React Native’s popularity is part of the reason this breach matters. Mobile-first development relies heavily on consistent and reliable UI libraries — exactly the kind that were targeted. When tools like @react-native-aria/focus or @gluestack-ui/utils become untrustworthy, developers lose confidence in their entire workflow. The breach is more than a security flaw — it’s a trust breakdown in open-source integrity.

In the aftermath, it’s evident that dependency trust must be earned, not assumed. Developers are now forced to reassess the risks of each automated install. While this attack was eventually detected and reported, the real danger lies in what might have gone unnoticed. There could be dozens of other dormant packages awaiting exploitation.

Security vendors must adapt by integrating behavioral detection, not just signature-based scans. Community-driven vulnerability reporting should also evolve, promoting faster escalations for anomalous changes — even in older, “quiet” libraries. The broader lesson is that open-source ecosystems cannot be left unguarded simply because they’re free. They power most of the world’s code — and with great power comes the need for proactive, layered defense.

Fact Checker Results ✅🕵️‍♂️

✅ Yes: The listed packages and versions have been confirmed as compromised by security research groups like Aikido.
✅ Yes: The malware exhibits system fingerprinting and C2 communications using known malicious IPs.
✅ Yes: The obfuscation and RAT functionality have been validated in live malware tests.

Prediction 🔮🚨

This breach will likely catalyze a wave of new security tools focused on open-source package integrity. Expect GitHub, npm, and major cloud CI/CD providers to implement stricter package validation and behavior monitoring within the next 3 to 6 months. Developers may also turn toward zero-trust policies for third-party libraries, redefining how dependencies are approved and managed across enterprise environments.

References:

Reported By: cyberpress.org
Extra Source Hub:
https://www.instagram.com
Wikipedia
Undercode AI

Image Source:

Unsplash
Undercode AI DI v2

Join Our Cyber World:

💬 Whatsapp | 💬 Telegram