Lucene search
K

188 matches found

The Hacker News
The Hacker News
added 2026/06/01 11:54 a.m.38 views

China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan

A new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent. According to Seqrite Labs, targets of the campaign include government, research, academic, technology, and financial...

6.1AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/24 7:40 p.m.12 views

Malicious code in @stockrepublic/republic-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 300b309644b646817c47a283d8b9aaa018e8ae0f59986207f55fd0c39dca872a The package masquerades as an internal @stockrepublic component version 99.0.0, description 'Runs git diff and saves the output to git.log on install...

5.8AI score
Exploits0References2
OSV
OSV
added 2026/05/24 7:40 p.m.10 views

MAL-2026-4289 Malicious code in @stockrepublic/republic-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 300b309644b646817c47a283d8b9aaa018e8ae0f59986207f55fd0c39dca872a The package masquerades as an internal @stockrepublic component version 99.0.0, description 'Runs git diff and saves the output to git.log on install...

5.8AI score
Exploits0References2
The Hacker News
The Hacker News
added 2026/04/16 5:52 p.m.10 views

Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic

Cybersecurity researchers have warned of an active malicious campaign that's targeting the workforce in the Czech Republic with a previously undocumented botnet dubbed PowMix since at least December 2025. "PowMix employs randomized command-and-control C2 beaconing intervals, rather than persisten...

6.5AI score
Exploits0
Talos Blog
Talos Blog
added 2026/04/16 10:0 a.m.7 views

PowMix botnet targets Czech workforce

Cisco Talos discovered an ongoing malicious campaign, operating since at least December 2025, affecting a broader workforce in the Czech Republic with a previously undocumented botnet we call "PowMix." PowMix employs randomized command-and-control C2 beaconing intervals, rather than persistent...

6.5AI score
Exploits0
OSV
OSV
added 2025/11/12 7:18 p.m.2 views

MAL-2025-172878 Malicious code in ananda-poke21 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a84ebf3760efd3b0282a2ac03639d84b45d18c3044348d3e33d7c390746b997b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:29 a.m.4 views

Malicious code in sedna-cypress-dagda-slidev (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a9480eb72fd64424dc78d7a68c04b3407ef3bb591d0550aee3bb1b56a326f38 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/12 3:4 a.m.1 views

MAL-2025-138892 Malicious code in negative-blue-orangutan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b670c40380986d1f3afaedb7e8abf666e8256b430c191986c1063b53f0a299a1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 8:46 p.m.4 views

Malicious code in organisational_spider_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a0c80beebb50bad18a30606e7e7559ff4ba2df416a48552bbb058a456d5e45c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 8:46 p.m.5 views

Malicious code in dewanto-klentik7-riris (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eff91d00571803d968387057f3ec27ff52e3ded83c7f024bc2559da76edaf8c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/11 3:19 p.m.3 views

MAL-2025-113632 Malicious code in eligible_egret_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f83e08b1afc66ab14b01fcfc760a3880c5257d1c4a38355a60544c661a02ed5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 12:41 a.m.4 views

Malicious code in suitable-amethyst-peafowl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa32d0ceee5cfc2f37ea2039e1b7951de93a72e91abf374b496d2e7635fff328 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/10 5:21 p.m.2 views

MAL-2025-55744 Malicious code in dangerous_fly_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9cb89e1a289a1933d27ac623f1b946069f189875cc364090a555d08ddec779dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-4596

Malware in sbrugna...

8.8CVSS8.8AI score0.03658EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-31395

Malicious code in bioql PyPI...

4.3CVSS6.4AI score0.00201EPSS
Exploits0References1
HackRead
HackRead
added 2025/09/09 3:6 p.m.3 views

Republic and Incentiv Partner to Simplify and Reward Web3 Participation

Republic today announced a strategic partnership with Incentiv, an EVM-compatible Layer 1 blockchain designed to make Web3 simple,…...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2025/05/28 4:1 p.m.13 views

Czech Republic Blames China-Linked APT31 Hackers for 2022 Cyberattack

The Czech Republic on Wednesday formally accused a threat actor associated with the People's Republic of China PRC of targeting its Ministry of Foreign Affairs. In a public statement, the government said it identified China as the culprit behind a malicious campaign targeting one of the...

7.7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 10:20 a.m.9 views

CVE-2024-33683

Cross-Site Request Forgery CSRF vulnerability in WP Republic Hide Dashboard Notifications.This issue affects Hide Dashboard Notifications: from n/a through 1.2.3...

4.3CVSS5.1AI score0.00201EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2025/03/05 1:37 p.m.19 views

Dark Caracal Uses Poco RAT to Target Spanish-Speaking Enterprises in Latin America

The threat actor known as Dark Caracal has been attributed to a campaign that deployed a remote access trojan called Poco RAT in attacks targeting Spanish-speaking targets in Latin America in 2024. The findings come from Russian cybersecurity company Positive Technologies, which described the...

7.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/01/16 9:49 a.m.10 views

PlugX malware deleted from thousands of systems by FBI

The FBI says it has removed PlugX malware from thousands of infected computers worldwide. The move came after suspicion that cybercriminals groups under control of the People’s Republic of China PRC used a version of PlugX malware to control, and steal information from victims' computers. PlugX h...

7.7AI score
Exploits0
Rows per page
Query Builder