Lucene search
K

4 matches found

The Hacker News
The Hacker News
added 2026/06/29 5:36 a.m.62 views

Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer

Cybersecurity researchers have uncovered two hijacked npm packages and a cluster of Go packages that are designed to deploy a Python-based information stealer on compromised Windows, Linux, and macOS hosts. "This attack avoids the most common npm execution paths through lifecycle scripts, perhaps...

6.3AI score
Exploits0
Github Security Blog
Github Security Blog
added 2026/04/04 6:15 a.m.8 views

AVideo: Unauthenticated Access to Payment Order Data via BlockonomicsYPT check.php

Summary The BlockonomicsYPT plugin's check.php endpoint returns payment order data for any Bitcoin address without requiring authentication. The endpoint was designed as an AJAX polling helper for the authenticated invoice.php page, but it performs no access control checks of its own. Since Bitco...

3.7CVSS5.9AI score0.00318EPSS
Exploits1References3Affected Software1
Packet Storm News
Packet Storm News
added 2025/04/18 12:0 a.m.5 views

Bitcoin'S Edge: Embedded Sentiment in Blockchain Transactional Data

Cryptocurrency blockchains, beyond their primary role as distributed payment systems, are increasingly used to store and share arbitrary content, such as text messages and files. Although often non-financial, this hidden content can impact price movements by conveying private information, shaping...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/04/15 12:0 a.m.6 views

Clustering and Analysis of User Behaviour in Blockchain: a Case Study of Planet IX

Decentralised applications dApps that run on public blockchains have the benefit of trustworthiness and transparency as every activity that happens on the blockchain can be publicly traced through the transaction data. However, this introduces a potential privacy problem as this data can be track...

7AI score
Exploits0
Rows per page
Query Builder