3437 matches found
MAL-2026-80 Malicious code in smartspacestoreapp (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 131fda466c1132087962cfaaecf0a2f836548024dd31f9f0982764d87534c931 The package smartspacestoreapp was found to contain malicious code. Source: ghsa-malware...
Malicious code in wikibuy-mobile-analytics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e240a0c7b0f1e6f0ce72c097409a543c14de0b3231f000ef7d37c8d61b0e1ad8 The package wikibuy-mobile-analytics was found to contain malicious code. Source: ghsa-malware...
MAL-2026-69 Malicious code in n8n-performance-metrics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff33e7eec92ad0ad734fb7babcf427a9a5df69ba94b95c904c1ecfce32d5ef97 The package n8n-performance-metrics was found to contain malicious code. Source: ghsa-malware...
Malicious code in oj-sp-messages-banner (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2997bc3258b7333abbb7c3aa047917498aee227c667e865c51102062bc82916e The package oj-sp-messages-banner was found to contain malicious code. Source: ghsa-malware...
Malicious code in published_at (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6089f817f79b6c53b35373aac18fd90de2fba2940ba8daa1286c5d82ede4a9c The package publishedat was found to contain malicious code. Source: ghsa-malware dcecd48f5e6fb3589ec38336393f753621839d5278f70c28e6349129fd2eb39b An...
Malicious code in npm-xmt (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fcf1d57a75f915c7959a484b36e4b23c72425b90256a860d8d52e058599af296 The package npm-xmt was found to contain malicious code. Source: ghsa-malware 66603f4e5606fa61cf79355902ed86e376156cd0b163be93e0b471b87180e0b2 Any...
MAL-2025-192984 Malicious code in chai-promised-chains (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0956a62fcaae7fb3ed4d8d30007bc025850ba1f4915e2a816c0602f6d24f2135 The package chai-promised-chains was found to contain malicious code. Source: ghsa-malware...
MAL-2025-192980 Malicious code in @ptest2535/l_woker_mal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4196b81679a34023da03dc65cd5831c81e6c9d66d1a3617113d28a85b23c83c The package @ptest2535/lwokermal was found to contain malicious code. Source: ghsa-malware...
Malicious code in bigmathex (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2d6482202334e84fd3842eee620f23e8bc2b6fbcf1588bbb27c94176cfd0999 The package bigmathex was found to contain malicious code. Source: ghsa-malware 78d52a55be2e3f5049e8f23cfc7ba78e91116de3cf84b914b0b858d07b2e1ec8 Any...
MAL-2025-192975 Malicious code in rt-text-media-collection (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 761afaf4df6aa1b7badedc5757ada134cb041af11dad1257171abae2be3a4589 The package rt-text-media-collection was found to contain malicious code. Source: ghsa-malware...
MAL-2025-192976 Malicious code in shop-minis-docs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65062ebee33867314103794ac38067ced1fbbccad5a3f7002f8eda1a6c048bd4 The package shop-minis-docs was found to contain malicious code. Source: ghsa-malware 6edcc8bb2a5c12ec37244f9786010f29a9c7f7131c7b5b2d34d5dfbb9bc0365...
Malicious code in react-devtools-shared (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd222e067bee8f9d675a2d56e5e8eb63a00a76038df2d777aae7f5659bf3b0c6 The package react-devtools-shared was found to contain malicious code. Source: ghsa-malware...
Malicious code in supply_chain_dummy_test_2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed3f5fef388376bf388c291f40ce96d8431d31f38fb29b6f69b6543408d9ef2f The package supplychaindummytest2 was found to contain malicious code. Source: ghsa-malware...
Malicious code in supply_chain_dummy_test_3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f1963b5503ceeb0e8ed806c386f27edc1761eab24549419a8911a00f525b4a4c The package supplychaindummytest3 was found to contain malicious code. Source: ghsa-malware...
MAL-2025-192757 Malicious code in qxytest1 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0505d10da1308ac438dd0f500c125f12d4256deda46cca7991289eee22897d53 The package qxytest1 was found to contain malicious code. Source: ghsa-malware a5c4713032b22949ba57f3363cbced03d097646105ff09ef45dec3b09d552cae Any...
MAL-2025-192742 Malicious code in chai-tests-await (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e06b5ce760a0d0c13a10c5738f8e32b1b4a973261792b91f120017fa30e8352 The package chai-tests-await was found to contain malicious code. Source: ghsa-malware f36b7f537c61a8edb98af7f5d3c8fbc98d47dc0566ead08de39bab2fa58104...
MAL-2025-192743 Malicious code in dotenv-extend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b36b33fa03b9dafefe167d7891f649dc39ac77a18a67a25c44d0d647dd3518e9 The package dotenv-extend was found to contain malicious code. Source: ghsa-malware 7ef0bc2453e5610efd0011a08cecb1021a4d5a38aee276a269ad3185bb40925a...
MAL-2026-47 Malicious code in tiny-model-update (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a69a5156f95b3b1ddd3a9c0ddd7e1fad0cdd92841e56dc6ea7b950a35a5eb34 The package tiny-model-update was found to contain malicious code. Source: ghsa-malware...
U.S. DOJ Charges 54 in ATM Jackpotting Scheme Using Ploutus Malware
The U.S. Department of Justice DoJ this week announced the indictment of 54 individuals in connection with a multi-million dollar ATM jackpotting scheme. The large-scale conspiracy involved deploying malware named Ploutus to hack into automated teller machines ATMs across the U.S. and force them ...
Malicious code in xnetgpt-lite (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71954a410f80b8f6624ea3f25761c2590f558b97a000cf4e48413856e28516db The package xnetgpt-lite was found to contain malicious code. Source: ghsa-malware 667f6919693429b64e5a65f3b4d5f350ab3af5d1abedc44b073110b3b7f65344 A...