259 matches found
MAL-2023-4271 Malicious code in libosintmask (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 26b6d3ceaa3143264fa54dc1691c3060e63010972e9466279f4d80af025e20d9 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
MAL-2023-3183 Malicious code in esqpeppost (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx e49d077567a7e5f41d020d46952690f8da96207e8cc5d16a4dba900190e2ee96 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
MAL-2023-465 Malicious code in gateleen-hook-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bd5573ea2c726699d52d6500b6c16ed2c5f5650d90de8c3f4f5325a1c07d484a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-2400 Malicious code in deere-map-features (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ecf01480d483812d03ead6ec633c050d070eb0b88e31cedfdf174cf90012e914 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-6262 Malicious code in spotify-transport (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f8e24e04ec9c9fa1918b8a0fe048dd7a7a8224e0f65a576271d007153e5b99f9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-3272 Malicious code in gap-r (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e263e9376a1da867b496d527ea61914dca310bce0b7621229f5ee2d3c5038800 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-4441 Malicious code in lznfjbhurpjsqmr (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 84cad4351952e62a1d1e3e8fcafb3141058e13fdecfb1f62d7926c0e83bb37bd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
A Modern Hypervisor as a Basis for a Sandbox
In the field of information security, sandboxes are used to isolate an insecure external environment from a secure internal environment or vice versa, to protect against the exploitation of vulnerabilities, and to analyze malicious code. At Kaspersky Lab, we have several sandboxes, including an...
SSMA - Simple Static Malware Analyzer
SSMA is a simple malware analyzer written in Python 3. Features: Searches for websites, e-mail addresses, IP addresses in the strings of the file. Looks for Windows functions commonly used by malware. Get results from VirusTotal and/or upload files. Malware detection based on Yara-rules -...
Threat Outbreak Alert: Fake Payment Transfer Notice Email Messages on March 31, 2014
Medium Alert ID: 33578 First Published: 2014 March 31 15:39 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a payment transfer cancellation notice for the recipient. The text in the email message attempts to convince the...
Threat Outbreak Alert: Fake Telegraphic Transfer Payment Notification Email Messages on January 14, 2014
Medium Alert ID: 32436 First Published: 2014 January 15 14:50 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a Telegraphic Transfer TT payment notification for the recipient. The text in the email message attempts to...
Drive-By Downloads Still Running Wild
For some time now, the browser has been the most dangerous piece of software on the Web, and to hear researchers tell it, the climate it likely to get far worse before it gets any better. The attack landscape has shifted in a lot of important ways in the last few years, but none of the changes ha...
CVE-2003-1444
Kaspersky Antivirus KAV 4.0.9.0 allows local users to cause a denial of service CPU consumption or crash and prevent malicious code from being detected via a file with a long pathname...
js script kill free tools to avoid killing experience and simple analysis-vulnerability warning-the black bar safety net
Article author: bug Information source: evil octal information security teamwww.eviloctal.com to 本文 所 做 的 实验 是以 ah.jsice Fox a variant,the attachment named"病毒 样本 .txt"as a virus sample,other js malicious code without tests. Since Kaspersky the js killing the intensity is relatively large, and...
Mutiple AntiVirus Reserved Device Name Handling Vulnerability
Mutiple AntiVirus Reserved Device Name Handling Vulnerability Author:Sowhat Date:October,9th,2004 http://secway.org/Advisory/Ad20041009.txt Vendor: AntiVir www.hbedv.com Twister www.filseclab.com Protector plus 2000 www.pspl.com Overview: As many popular AV's "Reserved Device Name Handling...
CVE-2003-1444
Kaspersky Antivirus KAV 4.0.9.0 allows local users to cause a denial of service CPU consumption or crash and prevent malicious code from being detected via a file with a long pathname...
Various problems in Baltimore MailSweeper Script filtering
Saturday 22 September 2001 Various problems in Baltimore MailSweeper Script filtering =========================================================== Product Background -------------------- MAILsweeper is a Content Security solution for the gateway that allows businesses to implement policy for...
CVE-2000-0119
The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Windows Recycle Bin utility, which allows attackers to store malicious code without detection...
CVE-2000-0119
The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Windows Recycle Bin utility, which allows attackers to store malicious code without detection...