node-ipc malware removal
What is node-ipc malware ?
node-ipc is a package that contains malicious code, that targets users with IP located in Russia or Belarus, and overwrites their files with a heart emoji.
Malicious Code: Don't run it!
to fix it Upgrade node-ipc to version 10.1.3 or higher.
"The malicious code was intended to overwrite arbitrary files dependent upon the geo-location of the user IP address," the Microsoft-owned biz said.
Whenever node-ipc versions 11 or 9.2.2 are used as a dependency by
another project, they bring in peacenotwar and run it, leaving files on
people's computers. Version 9.2.2 has disappeared from the NPM registry
along with the destructive 10.1.x versions. Vue.js, for one, brought in
node-ipc 9.2.2 while it was available, as 9.x is considered a stable
branch, meaning there was a period in which some Vue developers may have
had .txt files show up unexpectedly.