3 matches found
MAL-2025-47332 Malicious code in ngx-ws (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 95fb4f437cc6a86277edcd8e45410d2cab05e8d357ee942684097ef28c221977 Any computer that has this package installed or running should be considered fully compromised. All...
Malicious code in ngx-ws (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 95fb4f437cc6a86277edcd8e45410d2cab05e8d357ee942684097ef28c221977 Any computer that has this package installed or running should be considered fully compromised. All...
Embedded Malicious Code
Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...