Lucene search
K

12 matches found

EUVD
EUVD
added 2025/11/13 3:23 a.m.3 views

EUVD-2025-179788

Malicious code in chalk-asteroid-await-prettier-stylelint npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/13 3:23 a.m.3 views

EUVD-2025-179785

Malicious code in chalk-mira-procyon-schema npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.2 views

EUVD-2025-113668

Malicious code in fetch-event-cosmiconfig-chalk npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.3 views

EUVD-2025-115466

Malicious code in chalk-gulp-helmet-andromeda npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.3 views

EUVD-2025-115467

Malicious code in chalk-gemini-nconf-cz-conventional-changelog npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/12 4:29 a.m.2 views

EUVD-2025-112134

Malicious code in json-passport-eslint-config-chalk npm...

6.6AI score
Exploits0
Qualys Blog
Qualys Blog
added 2025/09/10 8:43 p.m.13 views

When Dependencies Turn Dangerous: Responding to the NPM Supply Chain Attack

On September 8, 2025, attackers compromised a set of 18 widely used npm packages —including chalk, debug, ansi-styles, and strip-ansi—collectively downloaded over 2.6 billion times per week. Through a targeted phishing campaign against a maintainer, the attackers published malicious versions...

7AI score
Exploits0
Wiz blog
Wiz blog
added 2025/09/09 12:20 p.m.7 views

Widespread npm Supply Chain Attack: Breaking Down Impact & Scope Across Debug, Chalk, and Beyond

A deeper look at the npm debug/chalk supply-chain incident: deobfuscating the wallet-hijacking browser interceptor, quantifying the 2-hour exposure with Wiz telemetry 99% package prevalence, 10% malware presence, and unpacking what made it spread so fast...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/08 5:11 p.m.4 views

Malicious code in chalk (npm)

The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 985b6546ed08c8482326a4819faec318c27c1f6d7518acdf384d5f5a8c1453aa Any computer that has this package installed or running should be considered fully compromised. All...

7.1AI score
Exploits0References3
HackRead
HackRead
added 2025/09/08 4:38 p.m.5 views

npm Packages With 2 Billion Weekly Downloads Hacked in Major Attack

Aikido Security flagged the largest npm attack ever recorded, with 18 packages like chalk, debug, and ansi-styles hacked…...

7.1AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-8626 Malicious code in @malware-test-esnes-otary-calla-chalk/test-mlw3-esnes-otary-calla-chalk (npm)

The package @malware-test-esnes-otary-calla-chalk/test-mlw3-esnes-otary-calla-chalk was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2024/12/05 4:30 p.m.12 views

MAL-2024-11215 Malicious code in crypto-chalk (npm)

This package is a starjacking attack which bundles a cryptostealing payload. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c8183583924c5f6f8fc0ab3f242d354d5ee91cf77816175d98f546ef2e631f8e Any computer that has this package installed or running should be considered...

7AI score
Exploits0References3
Rows per page
Query Builder