635 matches found
Malicious code in netping (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 ecc862a2bc12e6779034a99abd68c5d4ffb047f1fc2ae94407dd9e4ad54df5cf The package silently downloads and installs an autostart script that then monitors clipboards and replaces copied cryptowallet adresses. --- Category: MALICIOU...
MAL-2026-3660 Malicious code in numpy-lib (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a1e0009e8bfad1a403632094f43e661b328b40a6f518db00b890712789e39734 Package installs persistent malware acting as Rat, with the focus of stealing data and modifying copied cryptowallet addresses. --- Category: MALICIOUS - The...
MAL-2026-3659 Malicious code in rich-util (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 cc191d72f2f92d966897d0f635b53afecd9a62e8b63de13fff125a00377fcb63 Package installs persistent malware acting as Rat, with the focus of stealing data and modifying copied cryptowallet addresses. --- Category: MALICIOUS - The...
Video call app Huddle01 exposed 600K+ user logs
The Cybernews research team found that video call app Huddle01 exposed email addresses, real names, and other identifiers through an unprotected Kafka broker. Think of an unprotected Kafka broker like a post office that stores and delivers confidential mail. Now, imagine the manager leaves the...
MAL-2025-46991 Malicious code in @duckdb/duckdb-wasm (npm)
The DuckDB Node.js package @duckdb/duckdb-wasm version 1.29.2 was compromised with malware through a sophisticated phishing attack targeting the DuckDB maintainers. An attacker created a pixel-perfect copy of the npmjs.com website at npmjs.help domain and tricked a maintainer into logging in and...
MAL-2023-2326 Malicious code in tkcalenddar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 325b2ed0fe011dd5d2f571984f69db6e439c5c2647752eabd2b0cb7848e722da Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-2336 Malicious code in tkkcalendar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 4dfe6635d443d00fa1ee3c506a1d4f06835a5875737720dd724a4475e7010359 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-1889 Malicious code in kcalendar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 1450a2f449693cff84949672b75ca2f472d5f7de72d279f609be36ff5d4cb19b Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-1890 Malicious code in ktcalendar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 3dae7c8d1185e6518c9e9358deb5aaa5806eb6b2b206a8b05731baa4a45a5b9c Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-2317 Malicious code in tkcaendar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 4e47063955bce27842f4da6dac58c8104eaefdf470e523858772657fe961606f Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-2318 Malicious code in tkcaledar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 9cb361599ef20186d9cbf356c5a2732c153e0576a344a8b471f8335cf74890db Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-2329 Malicious code in tkcalenndar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 3657f1c1724719566871bd93abb04097d923bd1485a87e9661f549a00afa9011 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-2315 Malicious code in tkcaalendar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 954677803cf5ebe654bfd7eedd0a3164de3ac7c292e6f8d0c262c076f8b02728 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-2319 Malicious code in tkcalednar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 2751263c8ef9db6ea790ea61f6c7150637a90527d732057cb54706619c31cca7 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-2291 Malicious code in tcalendar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 51218378709bfe987aadc08f4c49c00938dd166c52ea0f450de5b7ce9ba1289a Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-2339 Malicious code in ttkcalendar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx fe53354ad712e586c9dd05c583a5f6e31f9c7aa60bda1acb85d395e821d97d0b Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in tkcalendaar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx b3977a3ca29cde900c0bc5b8ca7b208dc26c6cebc7b606b233ed1cb0764b7c00 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-2327 Malicious code in tkcalendr (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx eba496de96dcac7d3d52a00087c49009d908f0eb73de4335ec91b76ce452d566 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-2320 Malicious code in tkcaleendar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 8ab410b220be583d348a263f180ddcaa0b9794fc3995fdd3fb2ddf55b2235fa9 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-2334 Malicious code in tkclaendar (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 8482aeec6df4fd5b11c0ccc16cdcb42107ac5c5053c4e26c3222dcf1046c80ac Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...