489 matches found
Malicious code in not-a-real-project (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 93a590cea516241fd5f5c305b133d564e87c9308fd1378a44f6a689e0ce972f7 The OpenSSF Package Analysis project identified 'not-a-real-project' @ 0.0.0 npm as malicious. It is considered malicious because: - The package...
Malicious code in proton-account (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis edfb8318aed91ce8eb51e269ae47766d501e4e03c1b95f4327570493b4b1379c The OpenSSF Package Analysis project identified 'proton-account' @ 99.99.999 npm as malicious. It is considered malicious because: - The package...
Malicious code in react-test-renderer-17 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 44a1a6575888ff4c59c07150c3211aa61af227fb9d17025b72af93ba65153098 The OpenSSF Package Analysis project identified 'react-test-renderer-17' @ 1.0.0 npm as malicious. It is considered malicious because: - The...
Malicious code in sovrin-networks (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b31e1dcc001e433d6e7aeca9f5f73e1934a3813dc3225fc622622f26a2a0c0a1 The OpenSSF Package Analysis project identified 'sovrin-networks' @ 99.99.99 npm as malicious. It is considered malicious because: - The package...
Malicious code in falsepositivecheck6969 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis cef392714b654bd14df8ba24c491e8844b54e08fee392bff62632f7f3e5d6fa1 The OpenSSF Package Analysis project identified 'falsepositivecheck6969' @ 9999.9.9 npm as malicious. It is considered malicious because: - The...
Malicious code in yc-as-client (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9df89f5f0260f38e93635cc5df99e7ea267d4c07f25e1446a49c08fdf21befe7 The OpenSSF Package Analysis project identified 'yc-as-client' @ 11.11.3 pypi as malicious. It is considered malicious because: - The package...
Malicious code in @hyperion-util/deferred-value (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ee6f14ca7114d9a5fd5096b74a8d6efa41d9df7e63dfcbfa2778ba8ba7d5dc64 The OpenSSF Package Analysis project identified '@hyperion-util/deferred-value' @ 77.77.79 npm as malicious. It is considered malicious because:...
Malicious code in tucan-x (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 69bdf61be1b4579f5016adcacef468a263b798b77b87d354e90900d4cb4474b8 The OpenSSF Package Analysis project identified 'tucan-x' @ 0.0.2 pypi as malicious. It is considered malicious because: - The package...
Sundown Exploit Kit 'Larger Threat Than People Realize'
It’s been a tumultuous summer for exploit kits with the demise of Angler, Neutrino and Nuclear, for years each responsible for massive amounts of dollar losses and malware infections. Now, Cisco Talos security researchers are bracing for new entrants to fill the void, starting with the Sundown...