MAL-2024-1581 Malicious code in noblox.js-discord (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d714a330056d61b303e703615cd667da1871ff920b7563ed5d20d42d5b68c7be Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in noblox.js-discord (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d714a330056d61b303e703615cd667da1871ff920b7563ed5d20d42d5b68c7be Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1578 Malicious code in dell-ui-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b3c479c9bdd98cd009ae28c56a47f3ef7dd2dda6d6e96abbdfc86905f79f557b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in mmsdk-apml-htmlrenderer (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ae0814f13d1d5f49711b30a6fe260c2bfb566047df1b02774e899421faf58c92 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1576 Malicious code in code.jquery.ajax (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 52954659c906ed745d4b0c4b28b77fd0637eac32a5a4229bbeb6fa5ea8f7d004 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1574 Malicious code in code.cloudflare.ajax (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5869f17e67758b1fd6d47d84b2ab8d46f7912558ed8120de69bfc64ed5c0063d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1575 Malicious code in code.cloudflare.com (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fd0d00a0ff9a56ee7446eb2b6ffa5b59db4eb466925a2c3d769df90c00fdcd76 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Update: CVE-2024-4577 quickly weaponized to distribute “TellYouThePass” Ransomware

Introduction Recently, Imperva Threat Research reported on attacker activity leveraging the new PHP vulnerability, CVE-2024-4577. From as early as June 8th, we have detected attacker activity leveraging this vulnerability to deliver malware, which we have now identified to be a part of the...

Malicious code in aws-logs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4707229414d50f1284c7a7b64169463a7c7ca779faf42df6b059947dfd1b79eb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in vue2-webviews (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 95a66e858fcc284e27c0e0ac5e2d76de3b0f6c670ac21a185369832d45f40f5b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CGA-CCCJ-2882-734J

Bulletin has no description...

CGA-CHPW-HXJG-PMQ9

Bulletin has no description...

Malicious code in glup-debugger-log (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5001b44290fb031aa2d19602d8706fe384823c3fd0a2a02dedb3bab957d93f07 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

The vulnerability of the Windows component for working with SCSI devices in Windows operating systems allows a hacker to exploit their privileges.

The vulnerability of the Windows component for working with SCSI devices in Windows systems is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to increase their privileges...

Malicious code in win66lib (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1ef7e6b9c91af7d4a4e2199453260e026047e3029e2d8cc795fd530f1e6e1e8f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1525 Malicious code in test-lib-avishek (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b09a9d57bb929d0c7ba93b90c01ea2a5270838a233ae120bdade2730d5c6e364 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1522 Malicious code in random-avishek (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 02969e3f79ab835099da7fc1ca720e01142e1d7c098b4021ddb45930af85f11a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1521 Malicious code in pkg-lumina-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bd7ac6d227bb951e00656b9768230c146f3be307af9f71cb484a398b72132ec0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1520 Malicious code in package-delete (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 522d550ac171fd1be4e4d9cb5e0dcfcb7235e4de8417a758c82bb20b58e345f4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-1518 Malicious code in npmnewtest-avisheknayal1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 47030e6175929e7c1b3ce525879579330acf2aae6c6dcdc18c0e52956740b628 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...