43 matches found
Astra Linux - уязвимость в firefox, thunderbird
When opening Diagcab files, Firefox did not warn the user that these files may contain malicious code. This vulnerability affects Firefox 115, Firefox ESR 102.13, and Thunderbird 102.13...
MAL-2026-2977 Malicious code in ts-utils-dev (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e8a1476a3763d6093218666ee76d28124242e541f10e98fea5e396de93e97e85 The package ts-utils-dev was found to contain malicious code. Source: ghsa-malware 780475532d255944bb4846b6f84becadf429014e623c83b5ca508b6f97e39a9a A...
New macOS security feature will alert users about possible ClickFix attacks
Rumor has it that Apple deployed a new security feature in the fight against ClickFix. The new feature will be available for macOS Tahoe 26.4 and it will warn Mac users if they paste certain commands into the Terminal app that might be harmful. If such a command is pasted, macOS will warn the use...
Malicious code in uudi (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cdb12754a69bd912f7d51fb243c65d7c681cc0e15a17b561e0a491dd49dbb095 The package uudi was found to contain malicious code. Source: ghsa-malware f7b138cbc39567b6578a6cd48c9b8c7384a2bf7623d0d4542c9e37a1960b329b Any...
Malicious code in sai-tg-api (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b13c29b341c706e72066be2c2c8227189924ec9438d5e2ae7944484b2af63375 The package sai-tg-api was found to contain malicious code. Source: ghsa-malware 5a9fb1188aa41761a69996f43b3f4551ba995a153cb1ca06ee384db1331d27fc Any...
EUVD-2020-18856
Malware in sbrugna...
MAL-2025-47523 Malicious code in @dropbox-photo-viewer/electron-app (npm)
The package @dropbox-photo-viewer/electron-app was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c0e60f8bd38264b681d07237c310d98471fc7bfc1b9ab2bfabf4258bf01a9ea9 Any computer that has this package installed or running should be...
Malicious code in dotenvx-config (npm)
The package dotenvx-config was found to contain malicious code. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b1b17bc0067221fd1c252545277d6c9462a5c5ef95cfcdf96f7e320699387861 Any computer that has this package installed or running should be considered fully...
Malicious code in baitian-yuehui-baodian (npm)
The package baitian-yuehui-baodian was found to contain malicious code...
MAL-2025-10565 Malicious code in @zalastax/nolb-_vej (npm)
The package @zalastax/nolb-vej was found to contain malicious code...
Malicious code in imecon (npm)
The package imecon was found to contain malicious code...
Malicious code in @zalastax/nolb-_nodert (npm)
The package @zalastax/nolb-nodert was found to contain malicious code...
Malicious code in @zalastax/nolb-_fuj (npm)
The package @zalastax/nolb-fuj was found to contain malicious code...
Malicious code in jade-reef-zme941-project (npm)
The package jade-reef-zme941-project was found to contain malicious code...
Malicious code in @hishprorg/nihil-ab (npm)
The package @hishprorg/nihil-ab was found to contain malicious code...
MAL-2025-18704 Malicious code in down-lo-ad-now-zip-mp3-i-am-the-fun-blame-monster-31e3h-wgxkex (npm)
The package down-lo-ad-now-zip-mp3-i-am-the-fun-blame-monster-31e3h-wgxkex was found to contain malicious code...
Malicious code in epic-fortnite-shared-values (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c1673c5a65d3d81e0cbfe67ef5df8558add71a1993f06838d744058afa38e3ce Any computer that has this package installed or running should be considered...
Malicious code in react-plaid-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a2e5a7cd6740a8b92b5b0c681bce252fd1850ace8501de899aea496321176c95 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in graphlibcore (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 10441453f5296007b2b77ca9e580f3ce0a3ac50607cae82a6fe5858aaf1b0dee Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4753 Malicious code in my-headline (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5ceef507a7783e91b9901900d55040847c4c3866b6da30892e317299f295b3da Any computer that has this package installed or running should be considered...