4 matches found
MAL-2026-5565 Malicious code in ai-sdk-helpers (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 501daa3c8b2c9c2609dc60fd90ae59710a603ae56fa5dcc867d24913889c5413 [email protected] is a typosquat impersonating the Vercel AI SDK ecosystem homepage ai-sdk.guide, author 'AI SDK Guide '. On npm install,...
Malicious code in ai-sdk-helpers (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 501daa3c8b2c9c2609dc60fd90ae59710a603ae56fa5dcc867d24913889c5413 [email protected] is a typosquat impersonating the Vercel AI SDK ecosystem homepage ai-sdk.guide, author 'AI SDK Guide '. On npm install,...
Malicious code in achernar-spinner-phoebe-callback (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d399212cce44da716b4453d28a2ae282d63b656a01555bce4c82940730649661 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Fake version of note sharing site Privnote.com stealing users’ Bitcoin
By Waqas A fake version of popular encrypted messages web service Privnote.com that’s redirecting user’s cryptocurrency to scammers. This is a post from HackRead.com Read the original post: Fake version of note sharing site Privnote.com stealing users’ Bitcoin...