3449 matches found
MAL-2025-157 Malicious code in air-dao (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ddeda2a634c3018d1090755cab35377cb55a4f708bc18d0ac70f0999be80361c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in devopt (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fcf54c2d158de12c3d2d76b80c6977405217265d6e7da714233324d8cf8447ef Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in imports_exports (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ea5938b670954f2baac5b5cea2bc04aa6e747a8ddbd666cfc4a1a9188fc4016d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in vscode-tcf-debug (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 081bab0ec2ee34f3590622d06dc898c469bd03a5919b3f05c6637e0744439f59 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in prh-rules (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3a5e6bb05b0d252b543f928dda260a7af8cbc90e0e636614f789255b0cffb16b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in delegator-core-viem (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware abfbbf539b90caab925674f6beebb0623e42d576e687d703a9facfd25df6bbc4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in aaguid (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 522b19236a32229490de2f81bcd1ca220dbdf1207f3650a63b4e6a1853f0edaf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in stylexjs-scripts (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4b0810f5fe9534bb182c28c449a4ad5dc498cdb96461e00596f5b6933f2b67b1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-179 Malicious code in dds-js-devkit (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0e0db7ac7daeb916d2610c7e857e635a24cecf8264c32d39366fc297fcda631d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-149 Malicious code in aaguid (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 522b19236a32229490de2f81bcd1ca220dbdf1207f3650a63b4e6a1853f0edaf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-188 Malicious code in flow-for-vscode (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 742d06c1ae23b840fac7171256afdfb012d6a1dff8154d55ffe9cc41d79ef968 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ai-playground (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 064d09133421ca62cdc2479a659b99caf018de8ee41ce090f7c672b8ad474843 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in nimiq-validators-trustscore (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 439234df75ca95b0a55dd5adb5b75241f16bd7d342b1e80ad5c96a53bbced90d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in as-essential (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ca79d9d4238a2b341541971bce5d43c48035839588832624bb45769b20fc33e3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ad-shield (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8fa203eed643427755b02207456b1deb0838e2d56b76368ad46a08dfd5b087e6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in karma-fest-preprocessor (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 12fc59d44987dfafc3d0226a2629d1aa8294664f22936a59406d8e77b6695b2a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
FBI Deletes PlugX Malware from Thousands of Computers
According to a DOJ press release, the FBI was able to delete the Chinese-used PlugX malware from "approximately 4,258 U.S.-based computers and networks." Details: To retrieve information from and send commands to the hacked machines, the malware connects to a command-and-control server that is...
PlugX malware deleted from thousands of systems by FBI
The FBI says it has removed PlugX malware from thousands of infected computers worldwide. The move came after suspicion that cybercriminals groups under control of the People’s Republic of China PRC used a version of PlugX malware to control, and steal information from victims' computers. PlugX h...
Malicious code in hello-hamid-world-npm-new (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 539c20029ec03b9e0b517324e4c69c8223fb3353722028788169d41256d1ef80 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in testin-elengose (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a31a1b1e6d6ea76e02eff8ae4d38d872484584bf0e6e734bb1cc26cdaeac6423 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...