MAL-2025-2488 Malicious code in antlir2-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 580dffd4893c96ae46965b4244381b9fcc03d13cdd1cf32b89bb7a0eee2521e2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in whatsapp-sdk-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 788206c160622c7c87f5e0b19b4be9383f89a8918fa3aace86ec99350a06daa4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2440 Malicious code in whatsapp-sdk-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 788206c160622c7c87f5e0b19b4be9383f89a8918fa3aace86ec99350a06daa4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in topper-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b6c2ac1f1c30ccadf055f2c40c14731fdfad72bb0d22ff86c704b36226819362 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2423 Malicious code in topper-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b6c2ac1f1c30ccadf055f2c40c14731fdfad72bb0d22ff86c704b36226819362 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in apache-superset-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1661502573ce2ee16beaabec0853d68140a4e4aa5372720f3f20359cacfaed78 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in aiven-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f7ef5fbee116dc7c6a033971fa455298110b289026b14470eb6120ae7aa06467 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2359 Malicious code in aiven-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f7ef5fbee116dc7c6a033971fa455298110b289026b14470eb6120ae7aa06467 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in cis-photoshop-api-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a77d4b1246934467151f8c2fc186f13f5899f16b36f1f32caa547a0908a27edf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Moderate: Red Hat Security Advisory: Red Hat Developer Hub 1.4.2 release.

Red Hat Developer Hub 1.4.2 has been released. Red Hat Developer Hub RHDH is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters AKS, EKS, GKE. The core features of RHDH include a single...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: aws-efs-csi-driver, datadog-agent, nuclei, caddy, pombump, newrelic-infrastructure-agent, docker-credential-gcr, http-echo, terraform-docs, scorecard, newrelic-infra-operator, kube-bench, logstash-exporter, runc, vexctl, ferretdb, kustomize, gops, kaf,...

GHSA-7WRW-R4P8-38RX vulnerabilities

Vulnerabilities for packages: kapp, http-echo, kube-bench, rabbitmq-messaging-topology-operator, kube-state-metrics, git-lfs, fq, kserve-modelmesh-serving, metacontroller, newrelic-nri-statsd, haproxy-ingress, containerd, cadvisor, sonobuoy, prometheus-pushgateway, falcosidekick, petname,...

Hackers Use Google Docs and Steam to Spread ACRStealer Infostealer

A new information-stealing malware, ACRStealer, is leveraging legitimate platforms like Google Docs and Steam to carry out its…...

A week in security (February 17 – February 23)

Last week on Malwarebytes Labs: Healthcare security lapses keep piling up SecTopRAT bundled in Chrome installer distributed via Google Ads Google Docs used by infostealer ACRStealer as part of attack DeepSeek found to be sharing user data with TikTok parent company ByteDance Malwarebytes introduc...

Google Docs used by infostealer ACRStealer as part of attack

An infostealer known as ACRStealer is using legitimate platforms like Google Docs and Steam as part of an attack, according to researchers. ACRStealer is often distributed via the tried and tested method of download as cracks and keygens, which are used in software piracy. The infostealer has bee...

DocsGPT 安全漏洞

DocsGPT is a cutting edge open source solution from Arc53 Open Source. It simplifies the process of finding information in project documentation. A security vulnerability exists in DocsGPT versions 0.8.1 through 0.12.0 that stems from improper parsing of JSON data using the eval function. An...

CVE-2024-23563

HCL Connections Docs is vulnerable to a sensitive information disclosure which could allow a user to obtain sensitive information they are not entitled to, caused by improper handling of request data...

PT-2025-25284

Name of the Vulnerable Software and Affected Versions ONLYOFFICE Docs DocumentServer version 8.3.1 and earlier Description The issue is a reflected cross-site scripting XSS problem that occurs when opening files via the WOPI protocol. Attackers could inject malicious scripts via crafted HTTP POST...

Malicious code in gestalt-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware edc35868180fe5879113537fbdce9118cb06ace84a31d55fa9268d5bc050091e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-1363 Malicious code in gestalt-docs (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware edc35868180fe5879113537fbdce9118cb06ace84a31d55fa9268d5bc050091e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...