14 matches found
MAL-2025-174428 Malicious code in goodai-sunabi-cufau (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 321e5c91c8ab17357dbd36b4344e391e5c564b533777b3de04f8a5404d110e1b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in eslint-plugin-element-ui-hyperion-dagda (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5038fe2a3c36f89c8648d1958ea6266b9e56a0ef60f2efb00d26435c3e79a2b9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in citra-nasi47-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b26316d8d883e0c5edd7cc50b4dfebb0e9232a66fb4b257c2877211ff81ba483 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-111915 Malicious code in fond_muskox_chocolate-58 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 649dad5cac7bc56e1f25e3554c7f2ff87bb38eed74035d9527da2f4f126ee498 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in gorgeous_landfowl-smiletea (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4dc3ae3c2ec3a338fd56767d0d7d3f40eed6fb7c95355c8ddd5cfc582a4ba541 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in candra-dodol1-ruro (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c89370177a218c952376d9c7b9ef34d2841a0c27e9764f96b732b94bfcd27127 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-91261 Malicious code in tuti-kembang40-riris (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 17da342a6d147a3afc67aaeccc1c8027a7e6df927b12adebbb1fc003731492dc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in indah-lupis31-sukiwir (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37715c41f6c3e21336601fe5a92cd2fca7b1a6d6d8965fc3350405f501d2a7a4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-56072 Malicious code in equal_jaguar_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e3d5a6c3c61954ad6c1a6f8e83378a99843d69a3a6fb0ec55e70f3d7fbd389b6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2023-2106 Malicious code in python-biance (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 19dff21c4a586c682709e1777a100c0cfabe7bdfcdfbf744473d02a13dfa4e4e Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-2226 Malicious code in scrapyy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx a892acfa2593ff26c0949d06a4bacf079fc021dd30455592961189e83528430f Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-2452 Malicious code in yfinacne (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 83f90f1335de6525d7c34d7d1fe32c807964daff9ce061822f0e18a96ab4bf66 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-1654 Malicious code in bitcionlib (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 4da0fa1d0611659a48bd40ca29cab25429d6128113ede37bc01bf2189f97d4e8 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
MAL-2023-1721 Malicious code in cryptocompae (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 1f96db8a11352eb1672bf334796a7f50903eaf34d76696d3840c568f12092e9f Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...