Skip to content
.ca
Home
Posts
Engagements
Recaps
IOCs
Detections
About
Search posts and IOCs
sign in
Loading…
https://api[.]svix[.]com/ingest/api/v1/source/src_3387plmb2uhxobe3q8shu/ · URL · cyfar.ca
indicator
url
hxxps://api[[.]]svix[[.]]com/ingest/api/v1/source/src_3387PLMB2uhXOBe3Q8sHu/
copy defanged
copy refanged (live)
First seen
2026-05-13
Last seen
2026-05-13
Sightings
1
Posts referencing this indicator
Malicious npm Package Brand-Squats TanStack to Exfiltrate Environment Variables
Socket
Attacker-controlled Svix ingest URL used as a dead-drop for exfiltrated environment variables.
2026-05-13