283 matches found
Malicious code in amplitude-ma-ts (npm)
npm stealer. Hardcoded Discord webhook id 1497047226428690432 in postinstall Folder/bin/S.js. Exfils hostname, whoami, pwd, publicip api.ipify.org, /etc/hosts via Discord embed. v1.0.21 empty placeholder, v1.0.22 shipped payload — name-squat-then-poison. Typosquats @amplitude/ analytics scope...
MAL-2026-3028 Malicious code in amplitude-ma-ts (npm)
npm stealer. Hardcoded Discord webhook id 1497047226428690432 in postinstall Folder/bin/S.js. Exfils hostname, whoami, pwd, publicip api.ipify.org, /etc/hosts via Discord embed. v1.0.21 empty placeholder, v1.0.22 shipped payload — name-squat-then-poison. Typosquats @amplitude/ analytics scope...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: mapletree: Fixed the MASTATEPREALLOC flag in maspreallocate. The preallocation flag is temporarily cleared when explicit requests for allocations are made. Existing allocations are already counted against the request through...
EUVD-2025-140276
Malicious code in miands-ma-nuru npm...
EUVD-2025-143254
Malicious code in anita-manuat-ma npm...
Malicious code in anita-manahuddat-ma (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1b3de13d54ba9842e6d52f3da49c6c944ccad04b31de8f5a2ad44f9ae82e6955 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-143146
Malicious code in buis-manis-ma npm...
EUVD-2025-143022
Malicious code in buis-suninna-ma npm...
EUVD-2025-143255
Malicious code in anita-manhuat-ma npm...
EUVD-2025-143256
Malicious code in anita-manahuddat-ma npm...
EUVD-2025-143259
Malicious code in anita-manahudat-ma npm...
EUVD-2025-144454
Malicious code in hereis-ma-ta npm...
EUVD-2025-147270
Malicious code in uaragifa-ma-sfu npm...
EUVD-2025-147280
Malicious code in uaragifa-ma-safufrat npm...
EUVD-2025-147276
Malicious code in uaragifa-ma-sauf npm...
Malicious code in uaragifa-ma-sfu (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f2ce72cb833aa70a4e533f84cddf331ff853fc05a8443952a6c3f25cab5f7eb4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-147282
Malicious code in uaragifa-ma-saf npm...
EUVD-2025-147275
Malicious code in uaragifa-ma-sauuf npm...
Malicious code in ma-rasaaya-nurses (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector eb38a83e5a36ceb61bf8cebbdb056ebf8e0d4000d123a3c28b6d0c6331ad6e9a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-147273
Malicious code in uaragifa-ma-sayugauf npm...