MAL-2025-2690 Malicious code in miro-terms-banner-s3-uploader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 03f414cb9ba131f7c282fb402bda0fd181018874345ee729525f90005f100e4e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2706 Malicious code in sf-intl-sn-prod (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bb4cc33212e001bc0af0440f49eb0c52cdc0ad223eba555c5cb2afaa9931e5c3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2632 Malicious code in @sensort/common (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ea8b1441ce3b2e9b979e7562567a2633263870f02bd46c47cb35aa404908f26a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2664 Malicious code in diacritic_remover (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 62c08c719942e4e0ee918dd8123ce27e23156df6350d196258f583181c0414ab Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2663 Malicious code in datahub-react-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f1d82378a4b4eeb1355f9d5fbee783eb02ebfd625e5b7480f1ab594461b8d90d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2678 Malicious code in intercomexpo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4ea73dc55cc76e35e3e754bd610fbdf5608dd0876da67ffcb09a4c24d6e3cf78 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3434 Malicious code in bbllaacckkwwoollff6ad8f753 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6d4b59c0779917e138aea3b1a424593ca84b58fa16a0cd75ba8a4c7523f92c87 During installation, the code either exfiltrate some information about the system or download and execute remote code --- Category: MALICIOUS - The campaign ha...

MAL-2025-3431 Malicious code in bbllaacckkwwoollff-6ad8f762-1a91-45d7-a9c5-356bd858356a (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4da60ab5fd2248194d9c485e99360f30cd77d89de065b6f30259328cfcadd2f2 During installation, the code either exfiltrate some information about the system or download and execute remote code --- Category: MALICIOUS - The campaign ha...

MAL-2025-2606 Malicious code in tec-registry (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a2ef98a8d8e55d815b7f3d3955fb72a5387e95a9f22ab1702df9d88b2c152a18 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2603 Malicious code in architecture-viewer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4282b66b0052ca80f8717181dbf7b0b94e88433b9e37f9ae718531960f9ddcbd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2562 Malicious code in com.unity.performance.profile-analyzer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0af641db458fc7a8378ef6660e94aa21d6e8a8662aa90cc72412d909765b39d0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-3143 Malicious code in arnotest (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 64475736790097a8b2e30db87aa02796673e4a50b3af8e0d633eb261ec376983 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2524 Malicious code in plasty (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 101f2171688036d97dd4a9278f0e3a13ddc39853c5161ece25ac283a619b19ba Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2529 Malicious code in syncdaemon (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f5bb66f3a9159e25129919edb2f4a2e771c86ee56706bcddaa2c0c2fcbf0df0c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2498 Malicious code in connectrix (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 32796f9da1158707843036162228087fd1cbc5d6f03f92e8aa14168c96b07fa7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2419 Malicious code in swing-log (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 74e0305658bb2e2835e269e7cb1b33b355945f3051b9fe3f58254ee225870681 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2393 Malicious code in newland-component-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7a4a9b55a483b5ec495bb5e9c06c5285932e3ff8eb091beee14345f52431123f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2394 Malicious code in newland-digitization-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 35b5f032125648b5b2cad6fb57b4fcf1c6ab755e93b9ca9640fc85e041bed665 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2408 Malicious code in rekilog (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ef04608cee8fdce58cca876b6f5e7cb4753ad72459148b7958b20c8526434769 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2357 Malicious code in airbnb-bootstrap-data (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8ab32fc1acc308cef69cd2c28a15f3ca79fb2ebeec3a94c3ece78de110b9229c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...