A malware dev has committed a magnificent self-own after an AI-coded malicious package leaked its own GitHub private token

News
By published

Whoops.

A still from the God of War Ragnarok trailer showing someone looking up at the sky in surprise
(Image credit: Sony Santa Monica)

We're continually warned about the prospect of AI-generated malware these days, but there is one important factor working in our favour: sometimes, it's kinda rubbish.

Ox Security researchers have discovered an info-stealing malicious npm package called mouse5212-super-formatter, designed to target Claude users. The nasty little blighter reached 676 downloads before being unmasked, after the apparently AI-coded malware leaked its own GitHub private token (via The Registry).

The researchers say the infostealer posed as an internal "archive deployment sync utility", but in reality, it "authenticates to GitHub (using an environment token or a hard-coded fallback), checks whether a target repository exists, creates it if needed, then recursively walks a local directory and uploads every file through the GitHub Contents API."

Latest Videos From

The malware then stores stolen files under a random per-run folder name, while also writing a fake network connections log to make "execution look like diagnostics rather than theft."

The GitHub private token allowed the researchers to trace the stolen files and analyse the malware, raising suspicions of AI coding involvement. The threat actor's GitHub account linked to the package has since been deleted.

Back angle Hacker wearing hoodies cloth motivation emotion and typing coding to hacking cryptocurrency from internet at home

(Image credit: skaman306 via Getty Images)

My favourite part? OX Security has put together a handy chart to show how it all works, labelling its type as "Infostealer/Malware-Slop." Damn.

"While threat actors have been leveraging their techniques in recent years, this is a good example showing how some... are using AI to generate malware without understanding basic opsec concepts and best practices," says the company.

"Now that the bar to create malicious code [has been] reduced significantly, we’re going to see more threat actors getting into the game–uploading more sloppy malwares, mostly mimicking APT groups to get a slice of the cake until npm starts automatically blocking malware completely."

Well, this particularly insecure, err, security risk appears to have been neutralised, and we can all rest easy in our beds tonight. Hey, just be glad we're still in the early days of the AI self-owning age. If things keep developing at the current rate, these stories are going to become a lot less fun as the years go on.

Razer Blade 16 gaming laptop
Best gaming rigs 2026

1. Best gaming laptop: Razer Blade 16

2. Best gaming PC: HP Omen 35L

3. Best handheld gaming PC: Lenovo Legion Go S SteamOS ed.

4. Best mini PC: Minisforum AtomMan G7 PT

5. Best VR headset: Meta Quest 3


👉Check out our list of guides👈

Andy Edser
Andy Edser
Hardware Writer

Andy built his first gaming PC at the tender age of 12, when IDE cables were a thing and high resolution wasn't. 26 years later (yes he's getting old), he now spends his days writing about and reviewing graphics cards, CPUs, keyboards, mice, gaming headsets and much, much more. You name it, if it's PC gaming hardware he'll write words about it, with opinions and everything.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.