Lucene search
K

181 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/21 5:33 p.m.7 views

Malicious code in outlookapi (npm)

The package contains several malicious PowerShell and VBS scripts used to harvest browser data, take screenshots, log keystrokes, and establish startup persistence. It also bundles a password stealer and exfiltrates stolen data via Slack and Discord webhooks. --- -= Per source details. Do not edi...

7AI score
Exploits0
OSV
OSV
added 2025/01/21 5:33 p.m.4 views

MAL-2025-617 Malicious code in outlookapi (npm)

The package contains several malicious PowerShell and VBS scripts used to harvest browser data, take screenshots, log keystrokes, and establish startup persistence. It also bundles a password stealer and exfiltrates stolen data via Slack and Discord webhooks. --- -= Per source details. Do not edi...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/06 12:49 p.m.6 views

Malicious code in walletcore-gen (npm)

The package contains several malicious PowerShell and VBS scripts used to harvest browser data, take screenshots, log keystrokes, and establish startup persistence. It also bundles a password stealer and exfiltrates stolen data via Slack and Discord webhooks. --- -= Per source details. Do not edi...

7AI score
Exploits0References1
OSV
OSV
added 2025/01/06 12:49 p.m.2 views

MAL-2025-47 Malicious code in walletcore-gen (npm)

The package contains several malicious PowerShell and VBS scripts used to harvest browser data, take screenshots, log keystrokes, and establish startup persistence. It also bundles a password stealer and exfiltrates stolen data via Slack and Discord webhooks. --- -= Per source details. Do not edi...

7.2AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/02 10:30 p.m.9 views

Malicious code in solana-login (npm)

The package contains several malicious PowerShell and VBS scripts used to harvest browser data, take screenshots, log keystrokes, and establish startup persistence. It also bundles a password stealer and exfiltrates stolen data via Slack and Discord webhooks. --- -= Per source details. Do not edi...

7AI score
Exploits0References3
The Hacker News
The Hacker News
added 2024/12/24 1:22 p.m.8 views

Researchers Uncover PyPI Packages Stealing Keystrokes and Hijacking Social Accounts

Cybersecurity researchers have flagged two malicious packages that were uploaded to the Python Package Index PyPI repository and came fitted with capabilities to exfiltrate sensitive information from compromised hosts, according to new findings from Fortinet FortiGuard Labs. The packages, named...

7AI score
Exploits0
Snyk
Snyk
added 2024/12/23 7:48 p.m.3 views

Malicious Package

Overview zebo is a malicious package. This package steals information from the victim by logging keystrokes and taking screen captures, which are exfiltrated to a server under the attacker's control. Remediation Avoid using all malicious instances of the zebo package. References - Fortinet Report...

9.8CVSS6.7AI score
Exploits0References2
Metasploit
Metasploit
added 2024/12/03 6:58 p.m.316 views

X11 Keylogger

This module binds to an open X11 host to log keystrokes. This is a fairly close copy of the old xspy c program which has been on Kali for a long time. The module works by connecting to the X11 session, creating a background window, binding a keyboard to it and creating a notification alert when a...

10CVSS6.5AI score0.20978EPSS
Exploits3
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/12/01 4:55 p.m.2 views

Malicious code in my-main-manager (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ac004ff76ebc011d60ae86c56b7f57ddb6ac0d24ff0ddd9ad777319775f79282 While the package appears to be a manager for Windows service, the linked executable is an infostealer with capabilities like cookie stealing ang keylogger. Th...

7.3AI score
Exploits0References3
The Hacker News
The Hacker News
added 2024/09/27 9:0 a.m.11 views

New HTML Smuggling Campaign Delivers DCRat Malware to Russian-Speaking Users

Russian-speaking users have been targeted as part of a new campaign distributing a commodity trojan called DCRat aka DarkCrystal RAT by means of a technique known as HTML smuggling. The development marks the first time the malware has been deployed using this method, a departure from previously...

7.3AI score
Exploits0
Apple
Apple
added 2024/09/16 12:0 a.m.35 views

About the security content of macOS Ventura 13.7

About the security content of macOS Ventura 13.7 This document describes the security content of macOS Ventura 13.7. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases...

8.1CVSS6.8AI score0.07939EPSS
Exploits1References1Affected Software1
The Hacker News
The Hacker News
added 2024/09/13 11:17 a.m.22 views

TrickMo Android Trojan Exploits Accessibility Services for On-Device Banking Fraud

Cybersecurity researchers have uncovered a new variant of an Android banking trojan called TrickMo that comes packed with new capabilities to evade analysis and display fake login screens to capture victims' banking credentials. "The mechanisms include using malformed ZIP files in combination wit...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2024/09/09 12:24 p.m.18 views

Blind Eagle Targets Colombian Insurance Sector with Customized Quasar RAT

The Colombian insurance sector is the target of a threat actor tracked as Blind Eagle with the end goal of delivering a customized version of a known commodity remote access trojan RAT referred to as Quasar RAT since June 2024. "Attacks have originated with phishing emails impersonating the...

7AI score
Exploits0
OSV
OSV
added 2024/07/29 11:15 p.m.3 views

CVE-2024-27886

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.4. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode...

5.5CVSS5.7AI score0.00465EPSS
Exploits0References3
NVD
NVD
added 2024/07/29 11:15 p.m.20 views

CVE-2024-27886

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.4, macOS Ventura 13.7. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode...

7.5CVSS0.00465EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/07/29 10:16 p.m.14 views

CVE-2024-27886

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.4, macOS Ventura 13.7. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode...

7.1AI score0.00465EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2024/07/01 12:44 p.m.31 views

Indian Software Firm's Products Hacked to Spread Data-Stealing Malware

Installers for three different software products developed by an Indian company named Conceptworld have been trojanized to distribute information-stealing malware. The installers correspond to Notezilla, RecentX, and Copywhiz, according to cybersecurity firm Rapid7, which discovered the supply...

7AI score
Exploits0
OSV
OSV
added 2024/06/10 9:15 p.m.4 views

CVE-2024-27799

This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma 14.5, macOS Ventura 13.6.7, macOS Monterey 12.7.5, iOS 16.7.8 and iPadOS 16.7.8. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode...

3.3CVSS5.7AI score0.00237EPSS
Exploits0References8
CVE
CVE
added 2024/06/10 8:56 p.m.71 views

CVE-2024-27799

CVE-2024-27799 affects Apple OSes: macOS Sonoma 14.5, macOS Ventura 13.6.7, macOS Monterey 12.7.5, and iOS 16.7.8 / iPadOS 16.7.8. The issue arises from insufficient entitlement checks, allowing an unprivileged app to log keystrokes in other apps, including those using secure input mode. Apple’s ...

3.3CVSS7.2AI score0.00237EPSS
Exploits0References12Affected Software3
Cvelist
Cvelist
added 2024/06/10 8:56 p.m.32 views

CVE-2024-27799

This issue was addressed with additional entitlement checks. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7. An unprivileged app may be able to log keystrokes in other apps including those using secure input mode...

0.00237EPSS
Exploits0References4
Rows per page
Query Builder