Lucene search
K

4614 matches found

Node.js
Node.js
added 2019/05/31 8:56 p.m.14 views

Malicious Package

Overview Version 1.5.3 of colour-string contained malicious code as a preinstall script. The package downloaded a file from a remote server, executed it and opened a backdoor. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secret...

7.1AI score
Exploits0Affected Software1
Node.js
Node.js
added 2019/05/31 8:56 p.m.14 views

Malicious Package

Overview Version 9.0.0 of colro-name contained malicious code as a preinstall script. The package downloaded a file from a remote server, executed it and opened a backdoor. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets a...

7.1AI score
Exploits0Affected Software1
Node.js
Node.js
added 2019/05/31 8:19 p.m.14 views

Malicious Package

Overview Version 1.8.4 of bowee contained malicious code as a preinstall script. The package downloaded a file from a remote server, executed it and opened a backdoor. Recommendation Any computer that has this package installed or running should be considered fully compromised. All secrets and ke...

7.1AI score
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2018/12/13 12:0 a.m.101 views

Emotet Trojan Detection

The script tries to detect the Emotet Trojan via various known Indicators of Compromise IOC. Note: This script is not running by default as it needs to crawl the target host for various files which puts high load on the target during the scan. Please enable it separately within scripts preference...

7.2AI score
Exploits0References3
Node.js
Node.js
added 2017/08/07 6:25 p.m.22 views

Malicious Package

Overview The npm-script-demo package is a piece of malware that opens a connection to a command and control server and executed the instructions it is given. It has been removed from the npm registry. Recommendation Any computer that has this package installed or running should be considered full...

10CVSS3.9AI score0.01455EPSS
Exploits0Affected Software1
The Hacker News
The Hacker News
added 2017/01/21 10:9 p.m.13 views

Russian Hacker behind 'NeverQuest' Malware, Wanted by FBI, Is Arrested in Spain

A Russian computer hacker wanted by the FBI on hacking allegations was arrested and jailed in Spain earlier this week, while a decision on his extradition to the United States has yet to be made. The Guardia Civil, Spanish law enforcement agency officers, have detained 32-year-old Stanislav Lisov...

6.8AI score
Exploits0
ThreatPost
ThreatPost
added 2014/01/31 3:7 p.m.11 views

DailyMotion Still Serving FakeAV Malware Scam

More than three weeks after notifying video-sharing site DailyMotion that it was compromised, security company Invincea reports the popular website is still infected. A spokesperson told Threatpost that Invincea’s original notification was not acknowledged and the company suspects this is a...

1.5AI score
Exploits0References4
The Hacker News
The Hacker News
added 2013/11/29 5:46 p.m.14 views

Warning: "A new message from Skype Voicemail Service" spam leads to Zeus Malware

Skype has been targeted by cyber criminals again this week. Users are receiving a new Spam Email with subject "You received a new message from the Skype voice mail service.", that actually leads to Zeus Malware. Zeus is a Trojan horse that attempts to steal confidential information from the...

6.6AI score
Exploits0
The Hacker News
The Hacker News
added 2013/02/14 1:49 a.m.16 views

Cross Platform Trojan builder distributed on underground forums

A Cross platform back door 'Frutas' remote access tool RAT is available for download on many forums from January 2013. This Trojan builder is completely written in Java. Recently, Symantec experts analyse that Frutas RAT allows attackers to create a connect-back client JAR file to run on a...

7.3AI score
Exploits0
ThreatPost
ThreatPost
added 2011/06/12 3:26 a.m.6 views

International Monetary Fund Reportedly Hacked

The International Monetary Fund is the victim of a sophisticated, targeted attack that has compromised an unknown number of systems within the organization, Bloomberg reports. The Washington, D.C. based organization sent employees a memo informing them that a desktop computer within the IMF had...

0.3AI score
Exploits0References6
ThreatPost
ThreatPost
added 2011/05/03 7:5 p.m.95 views

Popular Sports Site Goal.com Serves Malware

Goal.com, a popular football aka “soccer” for all us Yanks news site was hacked and found serving malware via drive-by-downloads between April 27 and 28, according to a post by Web security firm Armorize. In an analysis of the attack, Armorize researcher Wayne Huang suggests that a hacker...

9.3CVSS1.7AI score0.96632EPSS
Exploits33References8
Check Point Advisories
Check Point Advisories
added 2010/01/27 12:0 a.m.13 views

Trojan: Aurora.Hydraq (CVE-2010-0249)

The Hydraq Trojan also known as Aurora was being used in the recent attack against Google and other large companies. A then unpatched Internet Explorer vulnerability CVE-2010-0249 was used as one of the propagation vectors for this Trojan. The intent of the trojan is to open a back door on a...

9.3CVSS6.1AI score0.91885EPSS
Exploits16
Exploit DB
Exploit DB
added 2007/09/25 12:0 a.m.28 views

NovaSTOR NovaNET 12.0 - Remote Command Execution

/ source: https://www.securityfocus.com/bid/39693/info NovaStor NovaNET is prone to code-execution, denial-of-service, and information-disclosure vulnerabilities. An attacker can exploit these issues to execute arbitrary code, access sensitive information, or crash the affected application, denyi...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2005/05/16 12:0 a.m.34 views

Mozilla Suite And Firefox - DOM Property Overrides Code Execution

source: https://www.securityfocus.com/bid/13645/info Mozilla Suite and Mozilla Firefox are affected by a code-execution vulnerability. This issue is due to a failure in the application to properly verify Document Object Model DOM property values. An attacker may leverage this issue to execute...

7.4AI score
Exploits0
Rows per page
Query Builder