188 matches found
China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan
A new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent. According to Seqrite Labs, targets of the campaign include government, research, academic, technology, and financial...
Malicious code in @stockrepublic/republic-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 300b309644b646817c47a283d8b9aaa018e8ae0f59986207f55fd0c39dca872a The package masquerades as an internal @stockrepublic component version 99.0.0, description 'Runs git diff and saves the output to git.log on install...
MAL-2026-4289 Malicious code in @stockrepublic/republic-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 300b309644b646817c47a283d8b9aaa018e8ae0f59986207f55fd0c39dca872a The package masquerades as an internal @stockrepublic component version 99.0.0, description 'Runs git diff and saves the output to git.log on install...
Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic
Cybersecurity researchers have warned of an active malicious campaign that's targeting the workforce in the Czech Republic with a previously undocumented botnet dubbed PowMix since at least December 2025. "PowMix employs randomized command-and-control C2 beaconing intervals, rather than persisten...
PowMix botnet targets Czech workforce
Cisco Talos discovered an ongoing malicious campaign, operating since at least December 2025, affecting a broader workforce in the Czech Republic with a previously undocumented botnet we call "PowMix." PowMix employs randomized command-and-control C2 beaconing intervals, rather than persistent...
MAL-2025-172878 Malicious code in ananda-poke21 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a84ebf3760efd3b0282a2ac03639d84b45d18c3044348d3e33d7c390746b997b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in sedna-cypress-dagda-slidev (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a9480eb72fd64424dc78d7a68c04b3407ef3bb591d0550aee3bb1b56a326f38 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-138892 Malicious code in negative-blue-orangutan (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b670c40380986d1f3afaedb7e8abf666e8256b430c191986c1063b53f0a299a1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in organisational_spider_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a0c80beebb50bad18a30606e7e7559ff4ba2df416a48552bbb058a456d5e45c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in dewanto-klentik7-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eff91d00571803d968387057f3ec27ff52e3ded83c7f024bc2559da76edaf8c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-113632 Malicious code in eligible_egret_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f83e08b1afc66ab14b01fcfc760a3880c5257d1c4a38355a60544c661a02ed5f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in suitable-amethyst-peafowl (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa32d0ceee5cfc2f37ea2039e1b7951de93a72e91abf374b496d2e7635fff328 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-55744 Malicious code in dangerous_fly_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9cb89e1a289a1933d27ac623f1b946069f189875cc364090a555d08ddec779dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2019-4596
Malware in sbrugna...
EUVD-2024-31395
Malicious code in bioql PyPI...
Republic and Incentiv Partner to Simplify and Reward Web3 Participation
Republic today announced a strategic partnership with Incentiv, an EVM-compatible Layer 1 blockchain designed to make Web3 simple,…...
Czech Republic Blames China-Linked APT31 Hackers for 2022 Cyberattack
The Czech Republic on Wednesday formally accused a threat actor associated with the People's Republic of China PRC of targeting its Ministry of Foreign Affairs. In a public statement, the government said it identified China as the culprit behind a malicious campaign targeting one of the...
CVE-2024-33683
Cross-Site Request Forgery CSRF vulnerability in WP Republic Hide Dashboard Notifications.This issue affects Hide Dashboard Notifications: from n/a through 1.2.3...
Dark Caracal Uses Poco RAT to Target Spanish-Speaking Enterprises in Latin America
The threat actor known as Dark Caracal has been attributed to a campaign that deployed a remote access trojan called Poco RAT in attacks targeting Spanish-speaking targets in Latin America in 2024. The findings come from Russian cybersecurity company Positive Technologies, which described the...
PlugX malware deleted from thousands of systems by FBI
The FBI says it has removed PlugX malware from thousands of infected computers worldwide. The move came after suspicion that cybercriminals groups under control of the People’s Republic of China PRC used a version of PlugX malware to control, and steal information from victims' computers. PlugX h...