19 matches found
Malicious code in @kucoin-gbiz-next/tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74b28e2536b0d59d01e913269776e3bd933f0bce2477136d28b923d2b5222d54 The package @kucoin-gbiz-next/tools was found to contain malicious code. Source: ghsa-malware...
Malicious Package
Overview @kucoin-gbiz-next/tools is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this packa...
MAL-2026-2587 Malicious code in @kucoin-gbiz-next/tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74b28e2536b0d59d01e913269776e3bd933f0bce2477136d28b923d2b5222d54 The package @kucoin-gbiz-next/tools was found to contain malicious code. Source: ghsa-malware...
Malicious code in kucoin-universal-sdk-example (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-5083 Malicious code in kucoin-universal-sdk-example (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in kucoin-test (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a7d98e81b91c8239a7b15024121674428fe1b62d3d9b001b73205b051391932b Any computer that has this package install...
Malicious code in kucoin-internal (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ea5c24a4b755eac4753ed0edc8481cffa8c4b84709d5c4e0bcf17871d598cffc Any computer that has this package install...
Malicious code in kucoin-dev (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5bc6d7a1ad2130468f00ff8d87225df98b3ed6bf45ca9bfb1a4abc0cb86895b3 Any computer that has this package install...
Malicious code in kucoin-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 71c16b2a40914551c9e7bdae7a7e6470a1d514a17dcf036b355f308f456a42bd Any computer that has this package install...
Malicious code in kucoin-production (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ff7abb8b4fceb09af6648acb617fd1e6d2af1e967b19bd929df5b262faab7808 Any computer that has this package install...
MAL-2025-1297 Malicious code in kucoin-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 71c16b2a40914551c9e7bdae7a7e6470a1d514a17dcf036b355f308f456a42bd Any computer that has this package install...
MAL-2025-1296 Malicious code in kucoin-internal (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ea5c24a4b755eac4753ed0edc8481cffa8c4b84709d5c4e0bcf17871d598cffc Any computer that has this package install...
MAL-2025-1299 Malicious code in kucoin-test (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a7d98e81b91c8239a7b15024121674428fe1b62d3d9b001b73205b051391932b Any computer that has this package install...
Malicious code in Kucoin.Net.Core (NuGet)
--- -= Per source details. Do not edit below this line.=-...
MAL-2023-1559 Malicious code in kucoin-prices (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx d89308a1cad90c22ac679c64ba69b184cebb0082f7d26962c26916f94b14fe1a Lazarus Group targeting blockchain and cryptocurrency companies by exploiting software supply chains through malicious npm packages and social engineering...
New Malware Campaign Leveraging Satacom Downloader to Steal Cryptocurrency
A recent malware campaign has been found to leverage Satacom downloader as a conduit to deploy stealthy malware capable of siphoning cryptocurrency using a rogue extension for Chromium-based browsers. "The main purpose of the malware that is dropped by the Satacom downloader is to steal BTC from...
Authorities Shut Down ChipMixer Platform Tied to Crypto Laundering Scheme
A coalition of law enforcement agencies across Europe and the U.S. announced the takedown of ChipMixer, an unlicensed cryptocurrency mixer that began its operations in August 2017. "The ChipMixer software blocked the blockchain trail of the funds, making it attractive for cybercriminals looking t...
Okta Hackers Behind Twilio and Cloudflare Attacks Hit Over 130 Organizations
The threat actor behind the attacks on Twilio and Cloudflare earlier this month has been linked to a broader phishing campaign aimed at 136 organizations that resulted in a cumulative compromise of 9,931 accounts. The activity has been condemned 0ktapus by Group-IB because the initial goal of the...
KuCoin crypto exchange loses $150m after hackers drain its hot wallets
By Waqas Hackers have stolen a whopping $150 million worth of cryptocurrency from KuCoin, a major crypto exchange based in Singapore. This is a post from HackRead.com Read the original post: KuCoin crypto exchange loses $150m after hackers drain its hot wallets...