Malicious code in tea_gunfinal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e39061b5c4bd19ce1c4484339c02362e1c72a8e487bd6902d4403694902843e2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

bako5 (=1.1.4), tea_gun (>=1.1.2 <=1.1.3) potentially affected by unknown CVE via tea_gun (=1.1.4)

teagun NPM version =1.1.4 is affected by a known vulnerability. The following packages have a transitive dependency on teagun and may be impacted: - bako5 =1.1.4 - teagun =1.1.2, =1.1.3 Source cves: unknown CVE Source advisory: OSV:MAL-2025-181567...

EUVD-2025-144082

Malicious code in manuffak-angabofi-gun npm...

School&#8217;s AI system mistakes a bag of chips for a gun

An artificial intelligence AI detection system at Kenwood High School mistakenly flagged a student’s bag of potato chips as a gun, triggering a police response. The 16-year-old had finished eating a bag of Doritos and crumpled it up in his pocket when he was done. But the school’s AI-based gun...

EUVD-2017-8600

Malware in sbrugna...

EUVD-2017-8599

Malware in sbrugna...

We Made Luigi Mangione’s 3D-Printed Gun—and Fired It

In the wake of Luigi Mangione’s alleged killing of a health care CEO with a partially 3D-printed pistol, we built and tested the exact same model of weapon ourselves. And it was entirely legal...

Facebook and Instagram Ads Push Gun Silencers Disguised as Car Parts

A network of Facebook pages has been advertising “fuel filters” that are actually meant to be used as silencers, which are heavily regulated by US law. Even US military officials are concerned...

The ‘Ghost Gun’ Linked to Luigi Mangione Shows Just How Far 3D-Printed Weapons Have Come

The design of the gun police say they found on the alleged UnitedHealthcare CEO’s killer—the FMDA or “Free Men Don’t Ask”—was released by a libertarian group...

The World’s Most Popular 3D-Printed Gun Was Designed by an Aspiring Terrorist

Growing numbers of insurgents and extremists use the FGC-9. Forensic analysis of online platforms reveals the dark world of the man who created it—a self-described incel who supported the German far right...

Internal Emails Reveal How a Controversial Gun-Detection AI System Found Its Way to NYC

NYC mayor Eric Adams wants to test Evolv’s gun-detection tech in subway stations—despite the company saying it’s not designed for that environment. Emails obtained by WIRED show how the company still found an in...

@gun-vue/relay (>=0.4.2 <=0.5.0), @mimik/configuration (>=4.4.10 <=5.0.11) +5 more potentially affected by CVE-2023-42282 via ip (=2.0.0)

ip NPM version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on ip and may be impacted: - @gun-vue/relay =0.4.2, =4.4.10, =1.0.0, =1.0.19, =1.0.0, =1.0.3 Source cves: CVE-2023-42282 Source advisory: OSV:GHSA-78XJ-CGH5-2H22...

The CDC's Gun Violence Research Is in Danger

In a year pocked with fights over US government funding, Republicans are quietly trying to strip the Centers for Disease Control and Prevention of its ability to research gun violence...

Malicious code in top-gun-maverick (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0c0918c52d62dfaec7570512c94da40ff77b2fbf449a0805b0c4c12f1c4f4f20 The OpenSSF Package Analysis project identified 'top-gun-maverick' @ 2.3.0 npm as malicious. It is considered malicious because: - The package...

houston.texasguntrader.com Cross Site Scripting vulnerability OBB-3506154

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

tyler.texasguntrader.com Cross Site Scripting vulnerability OBB-3480050

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Former TikTok exec: Chinese Communist Party had "God mode" entry to US data

A former executive at TikToks parent company ByteDance has claimed in court documents that the Chinese Communist Party CCP had access to TikTok data, despite the data being stored in the US. The allegations were made in a wrongful dismissal lawsuit which was filed in May in the San Francisco...

On Alec Baldwin’s Shooting

We recently learned that Alec Baldwin is being charged with involuntary manslaughter for his accidental shooting on a movie set. I dont know the details of the case, nor the intricacies of the law, but I have a question about movie props. Why was an actual gun used on the set? And why were actual...

Don’t Call the New Federal Gun Law a Gun Law

Democratic senators lacked actionable gun data for their negotiations—so they passed mental health reform instead...

Gun Database Breach Leaks Details on Thousands of Owners

Plus: Indian hacker-for-hire groups, Chinese student espionage efforts, and more...