Malicious code in gfxapi-ls (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 784bb96d93f59dcf39d71d7b4cc12349e74183b2f5557b86474e7f6ff17e6a11 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-110 Malicious code in uber-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7535a49e8f078514b8d362db1cbcacc6f91e202279199d22c199ae128bbcf1f4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in example-app-next (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2be5a6457ed09a44d55d954a5176fe895a1cd866bf1ca6f3b6e20a105121f0ff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-88 Malicious code in free-joe (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7b00740bddf24c0fbd788b2bf69da8f731d31f21f4c27ee73f56271d5c830570 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-119 Malicious code in zqdl5552 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1a501506092121ac6523697dfaf28b43f64b742486236421aff37dece918e007 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in zqdl55513 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8a623c3e69f707a5c5284a6e298d4d5149c282064e65985928f1277cd258d87d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in alchemy-web3-webpack-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0baf7db6925882a96eddaa00b4877f9147183d9b00a85fd69b02e5fe625f7ff7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in lana-docs-site (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware accb6c4448ea69a1e84f45256921e0bca2f42e0f2cb6ad93d0e60ed843b843f0 Any computer that has this package install...

MAL-2024-12163 Malicious code in @swiggy-private/aatm-nirbhar-bharat-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8c7b5be2c1f09619ffb810ecf32f211da2c461ad3b7370fd73eeb240b3ff90c0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Threat landscape for industrial automation systems in Q3 2024

Statistics across all threats In the third quarter of 2024, the percentage of ICS computers on which malicious objects were blocked decreased by 1.5 pp to 22% when compared to the previous quarter. Percentage of ICS computers on which malicious objects were blocked, by quarter, 2022–2024 Compared...

Malicious code in docu-scripts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b6622a889906180340028e70850543b9d34f93618e7dee954ad8d394aa5c86be Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in onyx-monorepo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d8be30b3e9e3e3e0c2d877dd6ab516a128433859782e8b798a2f9f095662ca6d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-52535

Dell SupportAssist for Home PCs versions 4.6.1 and prior and Dell SupportAssist for Business PCs versions 4.5.0 and prior, contain a symbolic link symlink attack vulnerability in the software remediation component. A low-privileged authenticated user could potentially exploit this vulnerability,...

Malicious code in nuget.shouldly (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7d4b735ba3b9d57b25bc19668899fc94bb9c054a0646d0c7a07800f9dbedf693 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in tracking-protection-experiment (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b7e3c4e6767c5b9de18b97979fd15fbe90fdc3b01d78bb3ce044f224e588787a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-12065 Malicious code in zap_contracts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 063e3a8cd4df1cbe8d271d03490b9f7dd78cbeda98767caf294735ff4cacef75 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-12038 Malicious code in serum-dex-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 23e693f28915ad1c0bf05e8f5e0e1cab49a329f00b7f27303d08ec76d8ab068f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in rodas (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6a32a859b94890e0e9f98e44e7e1371a0e22a191cb0a8324611736b601262baa Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-12030 Malicious code in rdjjfjooirpp.js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0def3cb04d3fb8c638daf6a97a708bd6b95632da63635563110d5827170cfff5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in rdjjfjooirpp.js (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0def3cb04d3fb8c638daf6a97a708bd6b95632da63635563110d5827170cfff5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...