4606 matches found
MAL-2023-725 Malicious code in react-liveness (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 47194814149429b2ad255dd7af25f5f896c60db91a66c27a1e0ab4ebf077bde1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-107 Malicious code in assets-graph (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx e513e7556846ca62fa4d27646eef928d55f2c2954ce9caa51dd63643e2adf445 Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...
MAL-2023-23 Malicious code in @ans-exam/client (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f1b89ea0770827099ee6eb05d0c0345dbf2c9318531d99794a8121609dea1d43 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-947 Malicious code in vue-audit (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx d83b4e200320d89600b71bfb94b2106e5e01fe0c319873c9dac9b0d9661447da Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...
MAL-2023-296 Malicious code in dvknpm-dev (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 699740896647f6c3926d3579cb62aaf2d4cb804f000f96f4ad3d049f5c176b13 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-910 Malicious code in tslib-react (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx ef2c27850230a6ec89e578f414b36de97f9850b32450c33921cb68699cf3ba38 Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...
MAL-2023-666 Malicious code in packj (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fa234f9cd17f850d24031cd41a8370ad57596e538deb70be48d9fdea3fc4577a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in rainbow-bridge-frontend (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b9d5b776bcc096bf2074b398b85698a12e8607fa2a06624cf23130a12eea6093 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-755 Malicious code in sample-app-typescript (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4a7432b767dd8bf532a686b3a40add828170682af3dcfdcab09c7d7a012a83e1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in vue-plugin-preset (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3413d1115c7dafb8a0cd6f9eeb88b22f2cba9d0e2f5509d5e0906749a9d7765f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-951 Malicious code in vuewjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx b899bfc2ad4cc34bb998c5775bb55e7aa7410d54e7fd924f62d666bae1ad40c6 Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...
Malicious code in chart-tablejs (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx c6d78e3ccec4aa1bcee41b14b382246c7efaf8a725582a9ab36550d8fc6cb203 Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...
MAL-2023-304 Malicious code in elliptic-parser (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 0ffc8361769988057a4d6c1f79b5cdcf930ac38ce3f5243cd2af71837be266c1 Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...
MAL-2023-312 Malicious code in eslint-plugin-artsy (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 489558294cd82cf59cd5486f7ce3fce82ec6c7baf9aaf9ba1edda5a1abf792a5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-360 Malicious code in fc-persistence (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 08ffca641672539520dd6ae1301f0c09f9fd69d642335c83b5db13bdf7240961 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-365 Malicious code in fc-scroll (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c7f4167da0bf5409b53f5b683dcdb962d93b6d03e2d9e3916c5859f78f8f9f1c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-364 Malicious code in fc-radio-button (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 83481051c5331447023a047dfc4f6f747cf968f9cbe6c214bd3baa3aa57c0348 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-375 Malicious code in fc-utilities (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a94b568ae69bdc27fd6f57fbb8cb60fde1777793150449ba9cb6895756e03a6d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-370 Malicious code in fc-style (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c0044f28d9bc471528eeff7a5ecab9803c242ec10b1ac6b7b53ae1e492f40091 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in fc-customer-service (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c2d285e54aa297d074fb908486497560ee5e7fa75c0c415eda550717a464d868 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...