Lucene search
K

12 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2023/07/11 12:0 a.m.3 views

Malicious code in btc-api-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx f59f6e40fe31bd4d5d4aa5da8bc0d032e2bbff9166104dc707c2987f953a5d93 Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...

7AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/06/29 12:0 a.m.4 views

Malicious code in js-cookie-parser (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 4db21916d97f75d76cd031171b76c9c5a2223cd3549d141bde479c6babb0569c Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...

6.9AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/06/21 12:0 a.m.5 views

Malicious code in sync-http-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 666c54b1098d52ea02eebf562d8cf02c1a736ee608eb15029543afd5181e4094 Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...

6.9AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/06/13 12:0 a.m.6 views

Malicious code in elliptic-helper (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 3f5aa19fd478d27d6a061c40dbabd597ef510b0bc122de0b4da84de18f478059 Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...

6.9AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/06/12 12:0 a.m.6 views

Malicious code in jpeg-metadata (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 7906a2514b62992b0bb412207830c603157b294619f8a328f6c8d95a8c494fde Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...

6.9AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/05/17 12:0 a.m.3 views

Malicious code in next2ejs (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx a38f3ed2458e9188f19672ebadf7f1bf9aae21e644c654fb82d93cc4b55abed0 Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...

6.9AI score
Exploits0References2
OSV
OSV
added 2023/05/16 12:0 a.m.11 views

MAL-2023-1554 Malicious code in ipstringfy (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx deea2822e14722106952d830748fc4b8c86f7613827ea90caaeb796f9a9eb9f4 Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...

7.2AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/05/15 12:0 a.m.2 views

Malicious code in ipmacjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx ab84a2353b9369f7696a6a8689cc3a152925fb4b13bcc3eff073e721b55aadff Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...

7AI score
Exploits0References1
OSV
OSV
added 2023/05/11 12:0 a.m.9 views

MAL-2023-1556 Malicious code in jsontobinary (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 31cd4cd413663a1b31485b3f8d93d643b462e9331b416f3aec9e6f0bde0aa8c2 Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...

7.2AI score
Exploits0References1
The Hacker News
The Hacker News
added 2022/07/28 6:9 a.m.24 views

U.S. Offers $10 Million Reward for Information on North Korean Hackers

The U.S. State Department has announced rewards of up to $10 million for any information that could help disrupt North Korea's cryptocurrency theft, cyber-espionage, and other illicit state-backed activities. "If you have information on any individuals associated with the North Korean...

0.7AI score
Exploits0
The Hacker News
The Hacker News
added 2022/04/19 6:23 a.m.31 views

FBI, U.S. Treasury and CISA Warn of North Korean Hackers Targeting Blockchain Companies

The U.S. Cybersecurity and Infrastructure Security Agency CISA, along with the Federal Bureau of Investigation FBI and the Treasury Department, warned of a new set of ongoing cyber attacks carried out by the Lazarus Group targeting blockchain companies. Calling the activity cluster TraderTraitor,...

Exploits0
Hacker One
Hacker One
added 2021/11/10 8:38 p.m.22 views

Cosmos: Unclaimed official s3 bucket of tendermint(tendermint-packages) which is used by many other blockchain companies in their code

An unclaimed official S3 bucket of Tendermint, which was also used by many other blockchain companies and developers, was discovered. An attacker could have hosted malicious files on the bucket, causing harm to the companies or developers using it for package installation. The vulnerability has...

7.1AI score
Exploits0
Rows per page
Query Builder