18 matches found
How RainyDay, Turian and a new PlugX variant abuse DLL search order hijacking
Cisco Talos discovered a new campaign active since 2022, targeting the telecommunications and manufacturing sectors in Central and South Asian countries, delivering a new variant of PlugX. Talos discovered that the new variant's features overlap with both the RainyDay and Turian backdoors,...
Malicious code in docs-public-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx ef1db73ad9c5c4da2dd3bded796ac7c4f660ab81ff6fd5cd77f0452265d05d6f Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
Malicious code in olymptrade (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 980d1b05adbe09f084ff3a74bbcdf8e7b12c80d99842d8caf74bb22009af6e38 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
Malicious code in ng-zulutrade-ssr (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx b7f6b1d4585de70357f4ac94823e53c6846ebaeaf161d5088e75c3fde5f7ac05 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
Malicious code in awell-libs (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx f22989168c34b37227bb7bcfe0b03c27cd141f8ec26d34a78a0c0ba06553f881 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
Malicious code in developer_backup_test522 (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 8b52e3ebbc9f77499af5305ed66af90a110e8aa4ae801a722309d25dfe72f01a Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
Malicious code in developer_backup_test527 (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 873572cb006dd8216d097e1014bc26f4f54e2e57b00c4ed5db617993287c9735 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
Malicious code in developer_backup_test531 (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx ba34269365aec86c0211ee348c1cc4f84e68214a7aed51304d8a309857881001 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
Malicious code in developer_backup_test532 (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx f05f5aa40e4c7abb13accb6085899f4b3fdf227cad5d43b4066b5a7d73717243 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
Malicious code in kiwi_vicious (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 24d3a7f0211bfcde4618961d390577b0a47d7aab36c363af84243b2427fc1c51 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
Malicious code in pear_vile (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 145f67c3ae87aa203e53f5a36d076c01ad4a8b9bc5cc89d0b6c13a4a9b73999e Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
Malicious code in cnp_al_corp_front (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx ca87bb9f11572bb7178a087d94273972886a104b0d9f9b25ea8799b418f8c85c Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
Malicious code in ajaxmanager-custom (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx cbfc18e18de3ecf81548e9fff07c310df0c09ae04271fbe4e2f3e6872af6c549 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
Malicious code in pagseguro-utils-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx f7a3386fd85bb30de547429241a02add188cf0bcb06352f465f9a5f403408db6 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
Malicious code in kaluza-careers (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 7fc6bb8e84e2499d431b69a1efe08fbdc626b2801e898180833dde64c951c39e Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
Malicious code in samuelpoctester (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 1f7b2e15c0c93b4a5ee61dc9bede38e31e95af4885247c9d4c30d4846d2d67ed Malicious packages campaign since 2021 targeting developers, steals source code and secrets Source: ghsa-malware...
Over 4,500 WordPress Sites Hacked to Redirect Visitors to Sketchy Ad Pages
A massive campaign has infected over 4,500 WordPress websites as part of a long-running operation that's been believed to be active since at least 2017. According to GoDaddy-owned Sucuri, the infections involve the injection of obfuscated JavaScript hosted on a malicious domain named...
Malicious code in lib-bb-html-sanitizer (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 74072bddc9908e0147976fde0680c197ac5b38167bfcdf14afc5f79f23749f72 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...