Malicious Package in buffdr-xor

2020-09-03T21:46:21
ID GHSA-8549-P68H-M9MC
Type github
Reporter GitHub Advisory Database
Modified 2020-09-03T21:46:21

Description

Version 2.0.2 contained malicious code. The package targeted the Ethereum cryptocurrency and performed transactions to wallets not controlled by the user.

Recommendation

Remove the package from your environment. Ensure no Ethereum funds were compromised.