datapizza-ai-parsers-azure (=0.0.2), datapizza-ai-parsers-docling (=0.0.2) +1 more potentially affected by CVE-2026-2969 via datapizza-ai-core (=0.0.1)

datapizza-ai-core PYPI version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on datapizza-ai-core and may be impacted: - datapizza-ai-parsers-azure =0.0.2 - datapizza-ai-parsers-docling =0.0.2 - datapizza-ai-tools-duckduckgo =0.0.2 Source cves:...

Malicious code in duckduckgo-eslint-config-poc (npm)

The package communicates with a domain associated with malicious activity...

MAL-2025-48679 Malicious code in duckduckgo-eslint-config-poc (npm)

The package communicates with a domain associated with malicious activity...

DuckDuckGo Browser 安全漏洞

DuckDuckGo Browser is a web browser from DuckDuckGo, Inc. A security vulnerability exists in DuckDuckGo Browser that originates from an unauthenticated attacker having access to account data, which could lead to the disclosure of credentials and email protection information...

EUVD-2021-31501

Malicious code in bioql PyPI...

Can you disappear online? (Lock and Code S06E19)

This week on the Lock and Code podcast There's more about you online than you know. The company Acxiom, for example, has probably determined whether you’re a heavy drinker, or if you're overweight, or if you smoke or all three. The same company has also probably estimated—to the exact dollar—the...

DuckDuckGo Is Taking Its Privacy Fight to Data Brokers

Privacy-focused company DuckDuckGo is launching a tool to remove data from people-search websites, a VPN, and an identity theft restoration service...

Private and Secure Web Search Engines: DuckDuckGo, Brave, Kagi, Startpage

What you look for online is up to you—just make sure no one else is taking a peek...

Gootkit Malware Adopts New Tactics to Attack Healthcare and Finance Firms

The Gootkit malware is prominently going after healthcare and finance organizations in the U.S., U.K., and Australia, according to new findings from Cybereason. The cybersecurity firm said it investigated a Gootkit incident in December 2022 that adopted a new method of deployment, with the actors...

Gootkit Malware Adopts New Tactics to Attack Healthcare and Finance Firms

The Gootkit malware is prominently going after healthcare and finance organizations in the U.S., U.K., and Australia, according to new findings from Cybereason. The cybersecurity firm said it investigated a Gootkit incident in December 2022 that adopted a new method of deployment, with the actors...

How to Use DuckDuckGo’s Privacy-First Email Service

Tired of advertisers spying on your private communications? This beta promises to kick tracking technology to the curb...

Malicious Package

Overview duckduckgo-privacy-extension is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if...

Malicious code in duckduckgo-styles (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b5dc8632d9358f856597e226091e2aa6ed376e3c6dd628063d238d981b0d2506 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-2605 Malicious code in duckduckgo-styles (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b5dc8632d9358f856597e226091e2aa6ed376e3c6dd628063d238d981b0d2506 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

DuckDuckGo Isn’t as Private as You Think

Plus: A $150 million Twitter fine, a massive leak from a Chinese prison in Xinjiang, and an ISIS plot to assassinate George W. Bush...

DuckDuckGo Allows Microsoft Trackers Despite No Tracking Policy – Researcher

By Waqas The privacy-oriented search engine and browser provider DuckDuckGo has received flak after a researcher identified Microsoft Trackers in… This is a post from HackRead.com Read the original post: DuckDuckGo Allows Microsoft Trackers Despite No Tracking Policy - Researcher...

DuckDuckGo’s Privacy Browser Finally Lands on Desktop

DuckDuckGo started out as a private search engine. Now its web browser is debuting on Macs to rival Chrome, Safari, Edge, and Brave...

CVE-2021-44683

The DuckDuckGo browser 7.64.4 on iOS allows Address Bar Spoofing due to mishandling of the JavaScript window.open function used to open a secondary browser window. This could be exploited by tricking users into supplying sensitive information such as credentials, because the address bar would...

CVE-2021-44683

The DuckDuckGo browser 7.64.4 on iOS allows Address Bar Spoofing due to mishandling of the JavaScript window.open function used to open a secondary browser window. This could be exploited by tricking users into supplying sensitive information such as credentials, because the address bar would...

Design/Logic Flaw

The DuckDuckGo browser 7.64.4 on iOS allows Address Bar Spoofing due to mishandling of the JavaScript window.open function used to open a secondary browser window. This could be exploited by tricking users into supplying sensitive information such as credentials, because the address bar would...