260 matches found
Malicious code in keeper-secrets-manager (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=-...
Malicious code in api-demo-sample-lib4 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=-...
Malicious code in webinarwebhookapp (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88bed070500ab5e1c676af51f01907117803edeb731a3f97079c35ff3ff1f354 Any computer that has this package install...
Malicious code in zqdl222 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 68ae567f53d22d83dcf9eeb0487e5de8498b076beba346f2942ce4658c258450 Any computer that has this package install...
Malicious code in semantic-release-dependencies (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 020b67d41edb23a8a7196b14ec40945dec7f238d55b82c0d7d1643568086e220 Any computer that has this package install...
Malicious code in grr-ui (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 345ae424d27b9cf2f744a7f8c06a861ea649e38119ef4321c09f6cccae526d0a Any computer that has this package install...
Malicious code in lana-docs-site (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware accb6c4448ea69a1e84f45256921e0bca2f42e0f2cb6ad93d0e60ed843b843f0 Any computer that has this package install...
Malicious code in grafana-sentry-datasource (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f64ac119461c222b3a037a8fb79c1239e05e03cbce16d87f17ce6f1bb3a857a7 Any computer that has this package install...
Malicious code in fider (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e33a8112ebd5139a50734b023e3b935048b314e8fd783e73722625dd79241c69 Any computer that has this package install...
Malicious code in unisocks (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7048c72cc0d604b91309e2009ab3661aa15f1f3199079d12871d1a54a2041b6b Any computer that has this package install...
Malicious code in interview-question (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon...
Malicious code in @dz-lib/icon (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 48177d2f5e82546462b55524174635af9b9c224b960955ce998919a80db4d812 Any computer that has this package installed or...
Malicious code in @dz-lib/dz-cli (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ec9421e5d1892420fe8194f8361f8c856ef3b31d6996e2554d840fc850e59a1e Any computer that has this package installed or...
Malicious code in @hisdk/mail-mac (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 396c6b416f2f3b292fa9331c7d139c100af0b05e27f9f92ab265b9767c90ec41 Any computer that has this package installed or...
Malicious code in @hi.editor/core (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon...
Malicious code in flybook-table (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon...
MAL-2024-12180 Malicious code in @hi.editor/core (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon...
MAL-2024-12182 Malicious code in flybook-table (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon...
MAL-2024-12181 Malicious code in @hisdk/mail-mac (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 396c6b416f2f3b292fa9331c7d139c100af0b05e27f9f92ab265b9767c90ec41 Any computer that has this package installed or...
MAL-2024-12179 Malicious code in @dz-lib/icon (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 48177d2f5e82546462b55524174635af9b9c224b960955ce998919a80db4d812 Any computer that has this package installed or...