MAL-2022-3279 Malicious code in gatsby-plugin-added-by-parent-theme (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 05e4eb992ae64e44e0964e3a0b46fbb4d1d22f0de7827450321de3eeabbb002b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-998 Malicious code in angieslist-gulp-build-tasks (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 91073d8aec7654e92fde4a5136f0cb4bd9ec77e2175cae875ab44d249d299818 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-6722 Malicious code in ual-content-page (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b0e062a5264ae40c85a311a097fdae78c7ea205dd058a5f59f25859075c6c121 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-4945 Malicious code in npm_test_nothing (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a2762093ac3ccb836bc8b7b5f620322cb4637be2e69a6c8128a2b3ba477ef46b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-2103 Malicious code in com.unity.searcher (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b14aeba676170a1376e65d8f33d8dea365e9c1d773f411624d9aec9f2d3a21ec Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-5239 Malicious code in payoneer-scripts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3214dbcec3171e906276f2f56836328b487566481b00c467fff3e60a4be19ff6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Embedded malware in rc

The npm package rc had versions published with malicious code. Users of affected versions 1.2.9, 1.3.9, and 2.3.9 should downgrade to 1.2.8 as soon as possible and check their systems for suspicious activity. Any computer that has this package installed or running should be considered fully...

Embedded malware in coa

The npm package coa had versions published with malicious code. Users of affected versions 2.0.3 and above should downgrade to 2.0.2 as soon as possible and check their systems for suspicious activity. See this issue for details as they unfold. Any computer that has this package installed or...

GHSA-73QR-PFMQ-6RP8 Embedded malware in coa

The npm package coa had versions published with malicious code. Users of affected versions 2.0.3 and above should downgrade to 2.0.2 as soon as possible and check their systems for suspicious activity. See this issue for details as they unfold. Any computer that has this package installed or...

Popular NPM Package Hijacked to Publish Crypto-mining Malware

The U.S. Cybersecurity and Infrastructure Security Agency on Friday warned of crypto-mining and password-stealing malware embedded in "UAParser.js," a popular JavaScript NPM library with over 6 million weekly downloads, days after the NPM repository moved to get rid of three rogue packages that...

Malicious npm package: an0n-chat-lib

The npm an0n-chat-lib package has been identified as malicious and removed from the npm package registry. Remediation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated immediately from a...

GHSA-W8FH-PVQ2-X8C4 Malicious npm package: sonatype

The npm sonatype package has been identified as malicious and removed from the npm package registry. Remediation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated immediately from a...

Malicious Package

Overview From https://blog.sonatype.com/sonatype-spots-more-discord-malware-in-npm?hspreview=BbDPGbfh-40737456755: The malicious packages were detected by Sonatype’s Security Research Team leveraging Sonatype’s Nexus Intelligence research service. On analyzing these packages closely, our Security...

Malicious Package

Overview From https://blog.sonatype.com/sonatype-spots-more-discord-malware-in-npm?hspreview=BbDPGbfh-40737456755: The malicious packages were detected by Sonatype’s Security Research Team leveraging Sonatype’s Nexus Intelligence research service. On analyzing these packages closely, our Security...

Malicious Package

Overview The package jdb.js contained malicious code. The package ran a postinstall script and contained a dropper for the njRAT/Bladabindi Remote Access Trojan. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys...

Malicious Package

Overview The package discord.app contained malicious code. The package ran a postinstall script that executed an.exe file containing Trojan malware. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that...

Malicious Package in bs85check

All versions of this package contained malware. The package was designed to find and exfiltrate cryptocurrency wallets. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated...

GHSA-4HQ8-V42X-9WX3 Malicious Package in bs85check

All versions of this package contained malware. The package was designed to find and exfiltrate cryptocurrency wallets. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated...

Malicious Package in bs58chcek

All versions of this package contained malware. The package was designed to find and exfiltrate cryptocurrency wallets. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated...

GHSA-7XC4-793X-25JP Malicious Package in bpi66

All versions of this package contained malware. The package was designed to find and exfiltrate cryptocurrency wallets. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be rotated...