{"schema_version":"1.7.3","id":"MAL-2025-191575","published":"2025-12-01T13:13:43Z","modified":"2025-12-02T21:58:44.939281Z","summary":"Malicious code in ing-ideal-acquiring-shared (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (0b98d8794a24b74ed659c1fcc64a270aa27181bb12f41b5b50e714177d46e8cf)\nThe package ing-ideal-acquiring-shared was found to contain malicious code.\n","affected":[{"package":{"name":"ing-ideal-acquiring-shared","ecosystem":"npm","purl":"pkg:npm/ing-ideal-acquiring-shared"},"versions":["15.1.26"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/ing-ideal-acquiring-shared/MAL-2025-191575.json"}}],"database_specific":{"malicious-packages-origins":[{"id":"RLMA-2025-05814","import_time":"2025-12-02T09:09:48.059587972Z","modified_time":"2025-12-01T13:13:43Z","sha256":"23fa915a2011cb72753166297a012e5818cafd1a583cbf8c4bfd5fd3341da430","source":"reversing-labs","versions":["15.1.26"]},{"import_time":"2025-12-02T21:35:53.863848598Z","modified_time":"2025-12-02T21:11:00Z","sha256":"0b98d8794a24b74ed659c1fcc64a270aa27181bb12f41b5b50e714177d46e8cf","source":"amazon-inspector","versions":["15.1.26"]}]},"credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}