7 matches found
EUVD-2025-178697
Malicious code in global-rollup-plugin-lightyear-thermochronology npm...
EUVD-2025-180057
Malicious code in biomimicry-epimetheus-thermochronology-native npm...
MAL-2025-187162 Malicious code in geodynamo-draco-cache-thermochronology (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector faf8bc17f4419109058b137dbb7f9cfea702b6352c942c830cee9294fde9f0f9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-36795 Malicious code in thermochronology-framework-jovian-ursa (npm)
The package thermochronology-framework-jovian-ursa was found to contain malicious code...
Information-Theoretically Secure Quantum Timestamping with One-Time Universal Hashing
Accurate and tamper-resistant timestamps are essential for applications demanding verifiable chronological ordering, such as legal documentation and digital intellectual property protection. Classical timestamp protocols rely on computational assumptions for security, rendering them vulnerable to...
RUSTSEC-2024-0395 The maintainer of chrono-english is unresponsive
All versions will encounter compilation errors with a chrono version 0.4.35, due to backward incompatible API changes. User conradludgade reworked the original crate and created a fork with the same API surface called interim. The fork is better structured and passes the same test suite as...
Hiding in plain sight: PhantomLance walks into a market
In July 2019, Dr. Web reported about a backdoor trojan in Google Play, which appeared to be sophisticated and unlike common malware often uploaded for stealing victims' money or displaying ads. So, we conducted an inquiry of our own, discovering a long-term campaign, which we dubbed "PhantomLance...