Trivy Supply Chain Attack Spreads, Triggers Self-Spreading Canisterworm Across 47 Npm Packages

"CanisterWorm" supply chain malware attacks npm

Rickrolling worm uses blockchain for command and control.

A Security Scanner Became the Weapon: How a Supply Chain Attack on Trivy Spawned a Self-Replicating Worm Across 47 npm Packages

The irony is almost too perfect. Trivy, the open-source vulnerability scanner built by Aqua Security and trusted by thousands of organizations to detect security flaws in their software supply chains, became the vector for a supply chain attack of its own. The compromise didn’t just plant malicious code in one place — it triggered a self-propagating worm that spread across at least 47 npm packages, silently embedding itself in projects that deve…

Technical Analysis: CanisterWorm npm Attack & Trivy Exploitation

On March 20, 2026 at 20:45 UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were receiving unauthorized patch updates, all containing the same hidden malicious code. What they had caught was CanisterWorm, a self-spreading npm worm deployed by the threat actor group TeamPCP.We track this incident as MSC-2026-3271.CanisterWorm is explicitly designed to target Linux systems. On…

CanisterWorm: The Self-Spreading npm Attack That Uses a Decentralized Server to Stay Alive

On March 20, 2026 at 20:45 UTC, Aikido Security detected an unusual pattern across the npm registry: dozens of packages from multiple organizations were receiving unauthorized patch updates, all containing the same hidden malicious code. What they had caught was CanisterWorm, a self-spreading npm worm deployed by the threat actor group TeamPCP. We track this […] The post CanisterWorm: The Self-Spreading npm Attack That Uses a Decentralized Serve…