3 matches found
Malicious code in anytoken-locked (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d0d2501597c91e0da0b6ab825a858938832f5b1789265e6207566b46353f9a47 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-1029 Malicious code in anytoken-locked (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d0d2501597c91e0da0b6ab825a858938832f5b1789265e6207566b46353f9a47 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious Package
Overview anytoken-locked is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package w...