4 matches found
MAL-2025-1224 Malicious code in moonpay-widget (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5f54359edaa7e13a4f8202996b5622e409f348903724d1243f86b503193bb17c Any computer that has this package installed or running should be considered...
MAL-2025-695 Malicious code in types-safety-web (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5f87d9fc827765eae4762461f11be747b286e523eca4f28f45a62ab4ff11d3c9 Any computer that has this package installed or running should be considered...
MAL-2025-433 Malicious code in dropbox-payment (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0c1844c19c7cf3e5c4516bafe7182ca717bf32d84b8739bbfc011893f4a2e8ce The OpenSSF Package Analysis project identified 'dropbox-payment' @ 999.9.9 npm as malicious. It is considered malicious because: - The package...
MAL-2025-3600 Malicious code in hello-wordl (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 238c137f1939d99c855ef5fedf6f16b67ac8fcd9087d80270475d3eeff8e8c65 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...