108 matches found
Malicious code in @flashbotts/ethers-provider-bundle (npm)
The package @flashbotts/ethers-provider-bundle was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88980ba81c782cffc6fd3ec8404e5c34d79fe5ae04b08f979135e503c9b01c4f Any computer that has this package installed or running should be...
MAL-2025-47084 Malicious code in sdk-ethers (npm)
The package sdk-ethers was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 51e62121be288d17f6614fc45dd876ddc687d28a7c8b1ce9f6cdc856ce94693b Any computer that has this package installed or running should be considered fully compromise...
MAL-2025-47028 Malicious code in @flashbotts/ethers-provider-bundle (npm)
The package @flashbotts/ethers-provider-bundle was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88980ba81c782cffc6fd3ec8404e5c34d79fe5ae04b08f979135e503c9b01c4f Any computer that has this package installed or running should be...
Malicious code in ethers-util.js (npm)
The package ethers-util.js was found to contain malicious code...
MAL-2025-19892 Malicious code in ethers-util (npm)
The package ethers-util was found to contain malicious code...
Malicious code in ethers-util (npm)
The package ethers-util was found to contain malicious code...
Malicious code in example-ethers-v4 (npm)
The package example-ethers-v4 was found to contain malicious code...
MAL-2025-19893 Malicious code in ethers-util.js (npm)
The package ethers-util.js was found to contain malicious code...
MAL-2025-20032 Malicious code in example-ethers-v4 (npm)
The package example-ethers-v4 was found to contain malicious code...
Malicious code in ethers-js-core (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6416 Malicious code in ethers-js-core (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in wagmi-ethers-connectors (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 204a9c16773cfe45fa9f2feb11287e056c0e87a52cb5f091a1e38c2469c69148 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-3926 Malicious code in wagmi-ethers-connectors (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 204a9c16773cfe45fa9f2feb11287e056c0e87a52cb5f091a1e38c2469c69148 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ethers-xdc (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1291aba3d0c0f6309af00246cdf38a846604fabf82d9cc352bf51f42517b0e20 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ethers-providerz (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-2876 Malicious code in ethers-providerz (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in ethers-provider2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 64291b6905fba089a2dada5e0215c20954bf12f15f76d27c5c341d2b91baa81b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2731 Malicious code in ethers-provider2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 64291b6905fba089a2dada5e0215c20954bf12f15f76d27c5c341d2b91baa81b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious npm Package Modifies Local 'ethers' Library to Launch Reverse Shell Attacks
Cybersecurity researchers have discovered two malicious packages on the npm registry that are designed to infect another locally installed package, underscoring the continued evolution of software supply chain attacks targeting the open-source ecosystem. The packages in question are...
Malicious code in @theoretical123/ethers (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 38f44d0e1293ff85f758987b79eb290ef0efac3652257af79e2c30e98267c89a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...