Malicious code in minotari_wallet_ff (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 48f015d501f7fda235545da39cb174ad6dfd4de2416ecb639a39644fd44618b6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in docusaurus-plugin-matamoh (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2587fce317c90b4371750f6dc2bd4c7d9ea86770d868b63eabf68afc96029c02 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in re_rank_demo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eef922d2749b6b914c7af74ab1c95d0c4ff4869dbb5619295bfee63a615ae5e8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in eslint-plugin-discord (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c4707252020cd550543cb451c800321561d678699d3436d86de8dacbb22c6c32 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-8604 Malicious code in sofa1-shop (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2755f958af07d7b6ae67d65d8716e99ac2110252da50a85dd160343dbf4c7962 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-8599 Malicious code in nextcapital-client-demo (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d0e25c92e1549fcd09f8a8f6bcf300247c61cf6e6c5f70da615d7167d603d531 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-8559 Malicious code in autocomplete-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a9655da8503f9549c9411d13c7b5306dd5b29247b41ee5857561d74aa7c118dd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in update-packager (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 594a5a70a75839b33f042d76c062a1d1d643b28f842472e9f5b0f95962aeb78f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

PT-2023-23937 · Intel · Hdmi Firmware Update Tool

Name of the Vulnerable Software and Affected Versions: IntelR NUC Kits NUC7i3DN, NUC7i5DN, NUC7i7DN HDMI firmware update tool software versions prior to 1.79.1.1 Description: The issue is related to an unquoted search path in the HDMI firmware update tool software, which may allow an authenticate...

Malicious code in one-host-app-context (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c17ed3eae2517098a0d480f80d6166610d23a6d0e082bf72cc8853b96a71a613 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in jira-check-action (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2bed2db55f61390f9aacacf4321419d15d7460764b9720c1106cf606ff6a6c94 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-8478 Malicious code in djstream (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8acfe36ea337cdce9e0365d0739a5a8c5d6e0d443e6e62917279f04cd96fe81d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in tst-atk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2033e787504d86b9c1f6d2daf7a33c85b76d469c02750192e284c092fd69059e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in creators-landing (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2fc0499f838e1cfd0606c8ecd156259994c73c118b52297215ce9f135ca9028e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-8458 Malicious code in frontegg-react-sanity-check (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fb25e4621d231dcfb19174b3d68e319d416128e938f699d683cd4cd436f0fd10 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in airslate-static (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 187dae9cdc21ec49b7d2dd1609dcfe155123738e42a66793b16990e78bb18225 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in airslate-image-uploader (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 108a6e072252da4d719844c42ffb41e5a8fbb92cbfdd9305086a108dfc14233a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2023-8441 Malicious code in mux-spaces-broadcast-layouts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 01c1c36f1f5a800c8875fff926e7201ac81769be7b9484aa1360c3cb2118ae00 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-43509

A vulnerability in the web-based management interface of ClearPass Policy Manager could allow an unauthenticated remote attacker to send notifications to computers that are running ClearPass OnGuard. These notifications can then be used to phish users or trick them into downloading...

Iran-Linked OilRig Targets Middle East Governments in 8-Month Cyber Campaign

The Iran-linked OilRig threat actor targeted an unnamed Middle East government between February and September 2023 as part of an eight-month-long campaign. The attack led to the theft of files and passwords and, in one instance, resulted in the deployment of a PowerShell backdoor called...