1922 matches found
EUVD-2025-55024
Malicious code in dark-white-bee npm...
Malicious code in dark-white-bee (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a1c30acaccf558a368a74d8bdc56a6db049738d14ac573d6ece785be774e0936 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-55023
Malicious code in dark-yellow-kiwi npm...
Malicious code in dark-gold-parrot (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d1188d177b89825cfb4e9f502d73ac374cf6bc9c8ac62eba92906722d5443c5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-55026
Malicious code in dark-gold-parrot npm...
MAL-2025-67626 Malicious code in dark-yellow-kiwi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53659348e16cd3a221ea5c8d75c45ab6e79073efdb607dd7779ec0d074d95b0f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-55025
Malicious code in dark-rose-shrew npm...
Malicious code in dark-yellow-kiwi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 53659348e16cd3a221ea5c8d75c45ab6e79073efdb607dd7779ec0d074d95b0f This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-60219
Malicious code in darkkiwiz3n npm...
Malicious code in dark_mole_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b24618a7a4ddbc280f4c4d63f7d894fe0aa7c5843055be90ae8485a87977a11d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-60235 Malicious code in dark_mole_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b24618a7a4ddbc280f4c4d63f7d894fe0aa7c5843055be90ae8485a87977a11d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Enterprise Credentials at Risk – Same Old, Same Old?
Imagine this: Sarah from accounting gets what looks like a routine password reset email from your organization’s cloud provider. She clicks the link, types in her credentials, and goes back to her spreadsheet. But unknown to her, she’s just made a big mistake. Sarah just accidentally handed over...
Creating a Linux Application Using VSCodium, Cline, OpenRouter, and Claude
In March I created a Windows Application Using Visual Studio Code, Cline, OpenRouter, and Claude. This was a program that created square screen captures. The user doesn't need to manually ensure the dimensions are a square. The program makes the window grow and shrink while keeping the length equ...
⚡ Weekly Recap: Lazarus Hits Web3, Intel/AMD TEEs Cracked, Dark Web Leak Tool & More
Cyberattacks are getting smarter and harder to stop. This week, hackers used sneaky tools, tricked trusted systems, and quickly took advantage of new security problems—some just hours after being found. No system was fully safe. From spying and fake job scams to strong ransomware and tricky...
CVE-2025-54603
creationtimestamp| type| source ---|---|--- 2025-10-30 19:29:51+00:00| seen| https://www.darkreading.com/ics-ot-security/claroty-patches-authentication-bypass-flaw 2025-11-01 14:40:08+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3m4l7upujag22...
Gmail breach panic? It’s a misunderstanding, not a hack
After a misinterpretation of an interview with a security researcher, several media outlets hinted at a major Gmail breach. Reporters claimed the incident took place in April. In reality, the researcher had said there was an enormous amount of Gmail usernames and passwords circulating on the dark...
Signal in the noise: what hashtags reveal about hacktivism in 2025
What do hacktivist campaigns look like in 2025? To answer this question, we analyzed more than 11,000 posts produced by over 120 hacktivist groups circulating across both the surface web and the dark web, with a particular focus on groups targeting MENA countries. The primary goal of our research...
Dark Web Roast - September 2025 Edition
Dark Web Roast - September 2025 Edition By Trellix Advanced Research Center · October 14, 2025 Executive Summary September 2025 brought us a delightful buffet of underground incompetence that makes one wonder if cybercriminals are actively competing for the "Most Spectacular Failure" award. From...
EUVD-2021-21299
Malware in sbrugna...
EUVD-2019-7802
Malware in sbrugna...