Lucene search
K

506 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/07 12:0 a.m.14 views

Malicious code in camelotlabs-core (npm)

Five packages camelotlabs-sdk, camelotlabs-core, camelotlabs-config, camelotlabs-worker, and camelotlabs-utils were published to the public npm registry at version 99.0.0 by the actor madman0619 as a dependency confusion attack targeting the internal npm packages of Camelot Labs. The inflated...

5.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/03 12:20 p.m.9 views

Malicious code in puan4 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6be2e7028440f68ad3621664d195d72288e6a1d8658f16a421f3ec52d63d6f7a During import, package automatically starts a connection to a C2 server, exfiltrates information about the host and data like sensitive files and browsers' dat...

6AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/02 12:54 a.m.10 views

Malicious code in as89ufnaisufn (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e21c9860ca710010b7059d9284d8e2665c8163a8f1f351782e1a30f2037ce647 During import, the package automatically downloads and executes code that first acts as an infostealer and then starts code acting as a RAT. It connects with a...

6AI score
Exploits0References1
OSV
OSV
added 2026/04/30 8:4 a.m.5 views

MAL-2026-3197 Malicious code in sdoihgio9sudghsiudbg (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 61f008a0a874bc97bef2f5d2c59d64b4ae73b7cdb66970e5f82a5abb8186372d During import, the package automatically downloads and executes code that first acts as an infostealer and then starts code acting as a RAT. It connects with a...

6AI score
Exploits0References1
Fedora
Fedora
added 2026/03/27 1:18 a.m.14 views

[SECURITY] Fedora 43 Update: headscale-0.28.0-1.fc43

An open source, self-hosted implementation of the Tailscale control server...

7.5CVSS6.9AI score0.00626EPSS
Exploits0
Fedora
Fedora
added 2026/03/27 12:18 a.m.7 views

[SECURITY] Fedora 44 Update: headscale-0.28.0-1.fc44

An open source, self-hosted implementation of the Tailscale control server...

7.5CVSS6.9AI score0.00626EPSS
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/16 12:0 a.m.7 views

Malicious code in transform-regexp-constructors (npm)

The package 'transform-regexp-constructors' is part of the PhantomRaven supply chain attack campaign Wave 3. It uses a Remote Dynamic Dependency RDD technique: the published package appears benign but includes a URL-based dependency in package.json pointing to an attacker-controlled C2 server...

5.4AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/02/20 7:39 p.m.4 views

CVE-2026-26201

emp3r0r is a C2 designed by Linux users for Linux environments. Prior to version 3.21.2, multiple shared maps are accessed without consistent synchronization across goroutines. Under concurrent activity, Go runtime can trigger fatal error: concurrent map read and map write, causing C2 process cra...

7.5CVSS5.5AI score0.00291EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:39 a.m.8 views

CVE-1999-0734

A default configuration of CiscoSecure Access Control Server ACS allows remote users to modify the server database without authentication...

7.5CVSS7AI score0.01418EPSS
Exploits0References1
Securelist
Securelist
added 2025/11/28 7:0 a.m.18 views

Tomiris wreaks Havoc: New tools and techniques of the APT group

While tracking the activities of the Tomiris threat actor, we identified new malicious operations that began in early 2025. These attacks targeted foreign ministries, intergovernmental organizations, and government entities, demonstrating a focus on high-value political and diplomatic...

8.5AI score
Exploits0
The Hacker News
The Hacker News
added 2025/10/21 1:47 p.m.6 views

PolarEdge Targets Cisco, ASUS, QNAP, Synology Routers in Expanding Botnet Campaign

Cybersecurity researchers have shed light on the inner workings of a botnet malware called PolarEdge. PolarEdge was first documented by Sekoia in February 2025, attributing it to a campaign targeting routers from Cisco, ASUS, QNAP, and Synology with the goal of corralling them into a network for ...

7.2CVSS6.5AI score0.53827EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2013-6035

Malware in sbrugna...

9CVSS6.4AI score0.03148EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2011-3257

Malware in sbrugna...

6.8CVSS6.4AI score0.01126EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2005-2791

Malware in sbrugna...

7.5CVSS6.4AI score0.01747EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-1999-0715

Malware in sbrugna...

7.5CVSS6.4AI score0.01418EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-1030

Malware in sbrugna...

4.3CVSS4.8AI score0.01526EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-3401

Malware in sbrugna...

9.3CVSS6.6AI score0.05122EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-1041

Malware in sbrugna...

4.3CVSS4.7AI score0.01533EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2004-1454

Malware in sbrugna...

5CVSS6.4AI score0.01798EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2020-0692

Malware in sbrugna...

10CVSS9.3AI score0.01455EPSS
Exploits0References4
Rows per page
Query Builder