303 matches found
Malicious code in archon7 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1f53d83b877f02c6e6b51cad5ccf4940a0e19e8e9aeda69d9a9d013ca471bd64 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in yizhifabao63 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8e401203ed8c584cdb95319e5420fa866fc2bfc7c74af5da32079aec65289308 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in afip-example-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware af458f37f8afe450febaa14d76f15345bc5fe0f83c274593a481ac82dcc0bad1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in external-adapters-js (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 95fb2f18c7015fcb8f30ee96a50ed46bc59f98370595754376e86ed37bc31e80 Any computer that has this package installed or running should be considered...
Malicious code in axelar-presets (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8a0ba6bc89d6d2aad9c955f0057c3c7085448df4c3e5972e6253b3c13cbc946d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in onchain-summer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1cfb3627a51e1629c525e521906f38f34f9ba857e21362db797959ce19749cc7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in deribit-arbitrage-monitor (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 64bc92786b02e2d413eda2df2dae650fcd3c651e901b32f32ba4fb5c27bbd258 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in addon-sdk (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c577c976c628e28178068560e5d64a099c595fddbdc191ec9343ac7ee6149712 Any computer that has this package installed or running should be considered...
Lazarus Group Uses React-Based Admin Panel to Control Global Cyber Attacks
The North Korean threat actor known as the Lazarus Group has been observed leveraging a "web-based administrative platform" to oversee its command-and-control C2 infrastructure, giving the adversary the ability to centrally supervise all aspects of their campaigns. "Each C2 server hosted a...
Malicious code in ig-grunt-maven-multi-deploy (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9ba822293906e2a34cd29d237818bee0b19bbafb28ea1600c9592ac2554d8501 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in prem-bot-convo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8cd47585859b799eb8fb019210456a4cfd1f1e439e305455338438c8e21be566 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in goji-js-org (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1158451b8e262941308f40c4e30935ba7abac4515ecb1d090b6fd1be2e507198 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in manajemenservice (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 00f781e5ec61ec2d725507626667d8de0819e01e64f92bcd3d1b5232b99df76d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in uflexreward-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 57620816e143ff2658a9323cbf5e516cacf63db55bbe14fecdabeafd68bf1d8a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in client-consent (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 36ebc6cac6d302018d141c45adee10302556bd3da3491d12734412f967aea772 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
About Elevation of Privilege โ PAN-OS (CVE-2024-9474) vulnerability
About Elevation of Privilege - PAN-OS CVE-2024-9474 vulnerability. An attacker with PAN-OS administrator access to the management web interface can perform actions on the Palo Alto device with root privileges. Linux commands can be injected via unvalidated input in script. The need for...
Malicious code in nikmodzp (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e854e48f3a98a1a2fafd6811da47c041201b2d27e260c9de160912108e4e9620 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in multi-module-framework (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f39776c52c5a6a5c6f0a98f7fe10de67a9df1af23b6ee9f5015566a8bb718837 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in short-link-sharer (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 735cc774b56e67d8c340132e845f7d6aa2bed09a124ecb6881b05ecc323d28af Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in xk6-toml (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 551700c0879f93238fce3b7ad7cdbad0c44f8e068838fb16e2078032e964835e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...