3 matches found
Malicious code in @nstudio/nativescript-checkbox (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6ac10be560243885c47e80e47d545e8006f285d8fe9f5756c7b92f9cd2085639 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-47164 Malicious code in @nstudio/nativescript-checkbox (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6ac10be560243885c47e80e47d545e8006f285d8fe9f5756c7b92f9cd2085639 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...