14 matches found
Malicious code in evil-package-for-test2 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d141529121b568f8705000de163ace0e815677592f10b3a603b92431e105aefe Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11141 Malicious code in evil-package-for-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a239752739844b809432df8dcc829f77e1a30400c98e4d475d703d3fd7dceb34 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in evil-package-for-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a239752739844b809432df8dcc829f77e1a30400c98e4d475d703d3fd7dceb34 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in test-evil-pkg-reverse (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 61acc3b6b342e65ed4e73d06d4e1361360c9c90c1d6d4974045bceee140bd1dc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-2960 Malicious code in evil-pkg1 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f3f9795022d3525ac5206d67f60906020987aabf1bf4580b48d7ac7c6429108c Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
MAL-2025-2959 Malicious code in evil-pkg (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 366920f1b216795839a0a8533db122155f0c839032a67fdd6a33544179749a2c Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
MAL-2024-10023 Malicious code in evil-package (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a6fe9e1f81afbcfb5f8f0d260af0434649c77b11d353d3264c7022e763767d43 --- Category: PENTEST - Packages with high confidence of being created for a pentest. Campaign: TEST-PACKAGES Reasons based on the campaign:...
Malicious code in evil-package (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a6fe9e1f81afbcfb5f8f0d260af0434649c77b11d353d3264c7022e763767d43 --- Category: PENTEST - Packages with high confidence of being created for a pentest. Campaign: TEST-PACKAGES Reasons based on the campaign:...
MAL-2022-2900 Malicious code in evil-package-sample (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b320e3dcc1537c8e96fd1d3a2bab84466c9c36e80222b7b2b147299b62029788 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in evil-package-sample (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b320e3dcc1537c8e96fd1d3a2bab84466c9c36e80222b7b2b147299b62029788 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in evil-package-no-install (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9f89aa37906751451562dd49ae34fbf0d01b7e329fcf2f7223c677a5d08c2ec1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-2899 Malicious code in evil-package-no-install (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9f89aa37906751451562dd49ae34fbf0d01b7e329fcf2f7223c677a5d08c2ec1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious Package in evil-package
All versions of evil-package contain malicious code. The package uploads the contents of process.env to example.com/log. Recommendation Remove the package from your environment. Given the host where the information was uploaded to there is no further indication of compromise...
Malicious Package
Overview All versions of evil-package contain malicious code. The package uploads the contents of process.env to example.com/log. Recommendation Remove the package from your environment. Given the host where the information was uploaded to there is no further indication of compromise. References...