2 matches found
MAL-2025-1220 Malicious code in insights-card-component (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 82766b608d8923a399168c6fb9ea11a282a64d105b48fde50debc89d2ba1b82b Any computer that has this package installed or running should be considered...
Malicious Package
Overview insights-card-component is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...