80 matches found
MAL-2026-5412 Malicious code in @klapp-kyc/routes (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca32e3aa7685d93e36eca726e08096bd0c5ba425172ef254fdf769cc09b46887 On npm install, the package's preinstall hook executes node index.js, which collects the installer's hostname, OS username, current working directory...
TrendAI™ at [un]prompted 2026: From KYC Exploits to Agentic Defense
At unprompted 2026, TrendAI™ demonstrated how documents can be used to exploit AI-driven KYC pipelines and introduced FENRIR, an automated system for discovering AI vulnerabilities at scale...
Malicious code in @atg-aml-shared/kyc-domain (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 669af5ff086209bd01c2d69a805bb4272ccedbc54a1a1c0ce79b0794dc92daea The package @atg-aml-shared/kyc-domain was found to contain malicious code. Source: ghsa-malware...
MAL-2026-1021 Malicious code in @atg-aml-shared/kyc-domain (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 669af5ff086209bd01c2d69a805bb4272ccedbc54a1a1c0ce79b0794dc92daea The package @atg-aml-shared/kyc-domain was found to contain malicious code. Source: ghsa-malware...
Malicious Package
Overview incode-kyc-backend is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
Malicious code in incode-kyc-backend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57c3747164b70855673dc56ebec2fbfcd084909fe71fe4ded3b1e80d4c155f53 The package incode-kyc-backend was found to contain malicious code. Source: ghsa-malware...
MAL-2026-708 Malicious code in incode-kyc-backend (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 57c3747164b70855673dc56ebec2fbfcd084909fe71fe4ded3b1e80d4c155f53 The package incode-kyc-backend was found to contain malicious code. Source: ghsa-malware...
New OPCOPRO Scam Uses AI and Fake WhatsApp Groups to Defraud Victim
Meet OPCOPRO, an online scam that builds a fake AI-run world like The Truman Show using WhatsApp and apps to steal IDs via fake KYC and investments...
Malicious code in react-native-kyc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3d1ae391e8ec2bcc50f5d507ae3566a122058f2d3aa4227b5abf64ecc43990a The package react-native-kyc was found to contain malicious code. Source: ghsa-malware b07a2ced47f073e338b59c9aed3d551f9e8acbbe7c1e02102b7a9c8fb37250...
Malicious Package
Overview react-native-kyc is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
EUVD-2026-1122
Malicious code in react-native-kyc npm...
MAL-2026-78 Malicious code in react-native-kyc (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3d1ae391e8ec2bcc50f5d507ae3566a122058f2d3aa4227b5abf64ecc43990a The package react-native-kyc was found to contain malicious code. Source: ghsa-malware b07a2ced47f073e338b59c9aed3d551f9e8acbbe7c1e02102b7a9c8fb37250...
Malicious Package
Overview ing-feat-kyc-consent is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2025-192934 Malicious code in ing-feat-kyc-consent (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 33ec1565e92d1ecffd4215be59b4dbd0d6a1e91be1511dab5c9b6ece1c202507 The package ing-feat-kyc-consent was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-12233
Malicious code in bioql PyPI...
EUVD-2025-12239
Malicious code in bioql PyPI...
EUVD-2025-12237
Malicious code in bioql PyPI...
EUVD-2025-12235
Malicious code in bioql PyPI...
EUVD-2025-12234
Malicious code in bioql PyPI...
MAL-2025-47513 Malicious code in @bgrc/kyc-theme (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 491ac58a40b45ff06a00ad44a33a15bd95394c8fde64034d150fb31433a18380 The OpenSSF Package Analysis project identified '@bgrc/kyc-theme' @ 9000.0.2 npm as malicious. It is considered malicious because: - The package...