Malicious code in @teselagen/bounce-loader (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f2f86497a8f8ebd289f9296f0d154c87fd2429bdf4fc8de97c6b1684ed3b9aaa Any computer that has this package installed or running should be considered fully compromised. All...

MAL-2025-47272 Malicious code in @teselagen/bounce-loader (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f2f86497a8f8ebd289f9296f0d154c87fd2429bdf4fc8de97c6b1684ed3b9aaa Any computer that has this package installed or running should be considered fully compromised. All...

@teselagen/ove (>=0.0.18 <=0.7.27), @teselagen/ui (>=0.0.23 <=0.7.27) +3 more potentially affected by unknown CVE via @teselagen/bounce-loader (>=0.0.12 <=0.3.11)

@teselagen/bounce-loader NPM version =0.0.12, =0.0.18, =0.0.23, =15.0.0, =17.0.12 - ove-electron =1.2.8 - teselagen-react-components =30.15.8 Source cves: unknown CVE Source advisory: SNYK:JS-TESELAGENBOUNCELOADER-12744519...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...