Malicious code in @huobi-lib/vulcan-js-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 19abe7ab9afcd189bbbd5061add8629d1f576b8dae3944cc7974b7581ffbd570 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview @huobi-lib/vulcan-js-sdk is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

MAL-2025-47145 Malicious code in @huobi-lib/vulcan-js-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 19abe7ab9afcd189bbbd5061add8629d1f576b8dae3944cc7974b7581ffbd570 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in huobi-bs-fe-common (npm)

The package huobi-bs-fe-common was found to contain malicious code...

Malicious code in huobi-trading-view-hbcloud (npm)

The package huobi-trading-view-hbcloud was found to contain malicious code...

MAL-2025-22800 Malicious code in huobi-trading-view-hbcloud (npm)

The package huobi-trading-view-hbcloud was found to contain malicious code...

MAL-2025-22799 Malicious code in huobi-bs-fe-common (npm)

The package huobi-bs-fe-common was found to contain malicious code...

MAL-2024-4509 Malicious code in Huobi.Net.Core (NuGet)

--- -= Per source details. Do not edit below this line.=-...

New Malware Campaign Leveraging Satacom Downloader to Steal Cryptocurrency

A recent malware campaign has been found to leverage Satacom downloader as a conduit to deploy stealthy malware capable of siphoning cryptocurrency using a rogue extension for Chromium-based browsers. "The main purpose of the malware that is dropped by the Satacom downloader is to steal BTC from...

Norway Seizes $5.84 Million in Cryptocurrency Stolen by Lazarus Hackers

Norwegian police agency Økokrim has announced the seizure of 60 million NOK about $5.84 million worth of cryptocurrency stolen by the Lazarus Group in March 2022 following the Axie Infinity Ronin Bridge hack. "This case shows that we also have a great capacity to follow the money on the blockchai...

Malicious code in huobi-trading-view (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 74d29ecae36ab585836b991b6bbef49b053752417c2479bc2f7b6d086b2217b3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-3724 Malicious code in huobi-trading-view (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 74d29ecae36ab585836b991b6bbef49b053752417c2479bc2f7b6d086b2217b3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-3725 Malicious code in huobi-trading-view-swap (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d4131800be5001915a56dd3db46bfe0a0b883eaa15801e0160afa68fc41fe30f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in huobi-bigmac-component (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fc8d18a850f02f95937f7c5299f757867e6f6bcd75b7ee103b8193f83b2db6a4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in huobi-trading-view-swap (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d4131800be5001915a56dd3db46bfe0a0b883eaa15801e0160afa68fc41fe30f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in huobi-bs-fe-scaffold (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bac5154dea0a0982316b2a0d54d6df43f25cd76daacac6d47c2b7a3bee9e0f4f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-3723 Malicious code in huobi-bs-fe-scaffold (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bac5154dea0a0982316b2a0d54d6df43f25cd76daacac6d47c2b7a3bee9e0f4f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-3722 Malicious code in huobi-bigmac-component (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fc8d18a850f02f95937f7c5299f757867e6f6bcd75b7ee103b8193f83b2db6a4 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Hackers Stole $5.4 Million From Eterbase Cryptocurrency Exchange

Cybercriminals successfully plundered another digital cryptocurrency exchange. European cryptocurrency exchange Eterbase this week disclosed a massive breach of its network by an unknown group of hackers who stole cryptocurrencies worth 5.4 million dollars. Eterbase, which has now entered...

New proxyOverflow Bug in Multiple ERC20 Smart Contracts (CVE-2018-10376)

On 4/24/2018, 01:17:50 p.m. UTC, PeckShield again detected an unusual MESH token transaction shown in Figure 1. In this particular transaction, someone transferred a large amount of MESH token — 0x8fff,ffff,ffff,ffff,ffff,ffff,ffff,ffff,ffff,ffff,ffff,ffff,ffff,ffff,ffff,ffff 63 f’s to herself...