21 matches found
Malicious code in qt-main (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 bd1f92a69928dc8fa2a6a50cfd596c34802bc68fc28dd5dd8508fc24344bbec9 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-2883 Malicious code in hibt-main (npm)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in azbit-main (npm)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-2134 Malicious code in upbit-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7391f484ff16261f5d67a14345fd40f488d3bd82c97ee08473b69af879adc46f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1397 Malicious code in bitstamp-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b47b2bc18b088e918e9f0a119c786790456bccd97013b5561c3a593b09b6d0ff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1394 Malicious code in bithumb-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 900f6956e80a6ac7b93daf1bae288b01fb928e3f80a3beb36d063cb44ebaf8f9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1422 Malicious code in kcex-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 250e2784873b2d4ccedb1c0017d13580afe0f3a3c3d956afeedcc1b962cc197d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in weex-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b584007c16319ecc4cbb0dadad514e12e33872b44707c476ea044b163bfc335e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1344 Malicious code in ascendex-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 142a52b8be8d82df662a3eda8e1ac0eb272c5af8bda1ee499d710997621a8535 Any computer that has this package install...
MAL-2025-1340 Malicious code in gemini-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c09b00286a4703399abe639fd63b221927636bff2eaa714fce91ae4f8c05451c Any computer that has this package install...
Malicious code in bitmart-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0a4122b4cb00eb3689bbfecf3e50e300b7778b673bcb6e7310686211fe129213 Any computer that has this package install...
MAL-2025-1326 Malicious code in bitmart-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0a4122b4cb00eb3689bbfecf3e50e300b7778b673bcb6e7310686211fe129213 Any computer that has this package install...
Malicious code in htx-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ea59d9da68ae649dea49d1c6f68c1e0dffcd2bde5987416db10abf148ada4adc Any computer that has this package install...
MAL-2025-1319 Malicious code in crypto-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0a037816e38bab1c99484a360227650688ef0859f5e52d151d3b2c87a0865535 Any computer that has this package install...
MAL-2025-1307 Malicious code in gate-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0046474269613cb6d87e02edb5ec73480af91adb0db74829e2fe811fabd5eed1 Any computer that has this package install...
Malicious code in kraken-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware de0bd6b283379718c5cc7051d586532589854100e79e3837ef82ba7ccbd61ace Any computer that has this package install...
MAL-2025-1284 Malicious code in xt-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4620b4c964cef23c75cd0562eabb2ff4b07f79eaf1dc268af62da2dcf99ee307 Any computer that has this package install...
Malicious code in xt-main (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4620b4c964cef23c75cd0562eabb2ff4b07f79eaf1dc268af62da2dcf99ee307 Any computer that has this package install...
Malicious code in colors-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 96fd7c2ffaf602629b98fecc493fbe4ac073420940d2b37155e7ba170062e676 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in dc-main (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d2dceb4a54732ea88a32914ede9a5ffd5c61c8593fa9ac72465d3f691b8e8f96 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...