4 matches found
Malicious code in fitra-poke13 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c9f00e23232b5d81776d42b4028c3d0d511a83be3c0ab339a2664348875638e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in fitra-poke32 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b1ae6d84e39ad8774a694bdceeb5c1ad3ca5b1034f342a6349e374f468c6c19 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in esqhttpcraftpong (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 77c72350ed94287f5b491e2600d0177d0587649535439ea3b11da860af2b0b29 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in selfcandyed (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx f3b275655ca005ddeb2b2a4a21cea2c0f002b62028c5eef1c40c89fc85e762eb EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...