Malicious Package

Overview binance-connector-js is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

Malicious code in binance-connector-js (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 61b2f0cbecf7f16706a567eb1deed7a8dc1722f112d2a002a9e94e690a066f3d Any computer that has this package installed or running should be considered...

MAL-2025-48615 Malicious code in binance-connector-js (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 61b2f0cbecf7f16706a567eb1deed7a8dc1722f112d2a002a9e94e690a066f3d Any computer that has this package installed or running should be considered...

Malicious code in binance-connector-ruby (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 41e39728f8654e35cb29f5b837a886f3a5a9ff0dd9b523fc1777672083ae645d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1575 Malicious code in binance-connector-ruby (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 41e39728f8654e35cb29f5b837a886f3a5a9ff0dd9b523fc1777672083ae645d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

ayugespidertools (>=3.4.1 <=3.9.5), baotool (=1.0.1) +129 more potentially affected by CVE-2022-39348 via twisted (>=16.0.0 <=22.10.0)

twisted PYPI version =16.0.0, =3.4.1, =1.5.0, =0.2.0, =0.0.2, =3.9.2, =0.1.0.dev2, =0.3.4, =0.1.0, =18.4.0, =1.1.2.post3, =1.2.0.post1 and more Source cves: CVE-2022-39348 Source advisory: OSV:GHSA-VG46-2RRJ-3647...

Malicious code in binance-connector-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 93212b28c7f6cbfe91b9f34b01f878171260998a13c7f3e1139188c66a49c06a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-1577 Malicious code in binance-connector-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 93212b28c7f6cbfe91b9f34b01f878171260998a13c7f3e1139188c66a49c06a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

ayugespidertools (>=3.4.1 <=3.9.5), baotool (=1.0.1) +129 more potentially affected by CVE-2022-21712 via twisted (>=16.0.0 <=22.10.0)

twisted PYPI version =16.0.0, =3.4.1, =1.5.0, =0.2.0, =0.0.2, =3.9.2, =0.1.0.dev2, =0.3.4, =0.1.0, =18.4.0, =1.1.2.post3, =1.2.0.post1 and more Source cves: CVE-2022-21712 Source advisory: OSV:GHSA-92X2-JW7W-XVVX...