21 matches found
Malicious Package
Overview aptos-mint is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package authorship...
Blockchain Communication Vulnerabilities
Blockchains are diverse in the way they handle communications between their nodes to disseminate information, mitigate attacks, and agree on the next block. While security vulnerabilities have been identified, they rely on an attack custom-made for a specific blockchain communication protocol. To...
Malicious code in aptos-protos (npm)
The package aptos-protos was found to contain malicious code...
MAL-2025-48482 Malicious code in aptos-protos (npm)
The package aptos-protos was found to contain malicious code...
EUVD-2024-35853
Malicious code in bioql PyPI...
CVE-2024-36049
Aptos Wisal payroll accounting before 7.1.6 uses hardcoded credentials in the Windows client to fetch the complete list of usernames and passwords from the database server, using an unencrypted connection. This allows attackers in a machine-in-the-middle position read and write access to personal...
Malicious code in aptos-cctp (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3b6cd02da8fc37ab7c63f1d8889bff2a948798c518d8d3ba61554aacbfa61546 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1062 Malicious code in aptos-cctp (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3b6cd02da8fc37ab7c63f1d8889bff2a948798c518d8d3ba61554aacbfa61546 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in stablecoin-aptos (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 76e77737db0ec2672a2287bfd58f691ef6d2adea8121df9b5d8e7687048c27b1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-12119 Malicious code in stablecoin-aptos (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 76e77737db0ec2672a2287bfd58f691ef6d2adea8121df9b5d8e7687048c27b1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in aptos-mint (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 36708bd8a484a66c209db0503bcb408bda289bc62ccb62bf603f1351229362ea The OpenSSF Package Analysis project identified 'aptos-mint' @ 0.0.1 npm as malicious. It is considered malicious because: - The package...
MAL-2024-10712 Malicious code in aptos-mint (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 36708bd8a484a66c209db0503bcb408bda289bc62ccb62bf603f1351229362ea The OpenSSF Package Analysis project identified 'aptos-mint' @ 0.0.1 npm as malicious. It is considered malicious because: - The package...
CVE-2024-36049
Aptos Wisal payroll accounting before 7.1.6 uses hardcoded credentials in the Windows client to fetch the complete list of usernames and passwords from the database server, using an unencrypted connection. This allows attackers in a machine-in-the-middle position read and write access to personal...
CVE-2024-36049
Aptos Wisal payroll accounting before 7.1.6 uses hardcoded credentials in the Windows client to fetch the complete list of usernames and passwords from the database server, using an unencrypted connection. This allows attackers in a machine-in-the-middle position read and write access to personal...
CVE-2024-36049
Aptos Wisal payroll accounting before 7.1.6 uses hardcoded credentials in the Windows client to fetch the complete list of usernames and passwords from the database server, using an unencrypted connection. This allows attackers in a machine-in-the-middle position read and write access to personal...
CVE-2024-36049
Aptos Wisal Payroll Accounting prior to version 7.1.6 is affected by a vulnerability where the Windows client uses hardcoded credentials to fetch the full list of usernames and passwords from the database over an unencrypted connection. This enables a machine-in-the-middle attacker to read and wr...
Aptos Wisal payroll 安全漏洞
Aptos Wisal payroll is an enterprise resource planning ERP solution from Aptos Luxembourg focused on the retail industry. A security vulnerability exists in Aptos Wisal payroll versions prior to 7.1.6 that stems from the use of hard-coded credentials. An attacker exploited the vulnerability to...
PT-2024-26862 · Aptos +1 · Aptos Wisal Payroll Accounting +1
Name of the Vulnerable Software and Affected Versions: Aptos Wisal payroll accounting versions prior to 7.1.6 Description: The issue allows attackers in a machine-in-the-middle position to gain read and write access to personally identifiable information PII and payroll data. It also enables them...
READYgg Onboards 15 Million Web2 Players into Web3 in Partnership with Aptos Labs
By Owais Sultan Millions of players will enter web3 gaming thanks to a new partnership between READYgg and Aptos Labs realized… This is a post from HackRead.com Read the original post: READYgg Onboards 15 Million Web2 Players into Web3 in Partnership with Aptos Labs...
Critical Flaw Reported in Move Virtual Machine Powering the Aptos Blockchain Network
Researchers have disclosed details about a now-patched critical flaw in the Move virtual machine that powers the Aptos blockchain network. The vulnerability "can cause Aptos nodes to crash and cause denial of service," Singapore-based Numen Cyber Labs said in a technical write-up published earlie...