264 matches found
Malicious code in elabasia-mobileapp-react-native-ui (npm)
The package executes harmful command in pre-installation script to send sensitive data to an arbitrary domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ba40a9eda5717392c99efe0516b4a42a0606f1f80cfa4f4887aa56fd0a4eaf93 Any computer that has this package install...
Malicious code in mlb-site-core (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9de998c89065e54ad576039f907182866e20268fdbabf834365503931267443d Any computer that has this package install...
Malicious code in jiolocate-ui (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 632763242c2df9c72854a919e8fd6a0c7a8b6debedb9c7e22cbd886883c4217b Any computer that has this package install...
Malicious code in kiota-typescript (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=-...
Malicious code in keeper-secrets-manager (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=-...
Malicious code in api-demo-sample-lib4 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=-...
Malicious code in webinarwebhookapp (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88bed070500ab5e1c676af51f01907117803edeb731a3f97079c35ff3ff1f354 Any computer that has this package install...
Malicious code in zqdl222 (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 68ae567f53d22d83dcf9eeb0487e5de8498b076beba346f2942ce4658c258450 Any computer that has this package install...
Malicious code in semantic-release-dependencies (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 020b67d41edb23a8a7196b14ec40945dec7f238d55b82c0d7d1643568086e220 Any computer that has this package install...
Malicious code in grr-ui (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 345ae424d27b9cf2f744a7f8c06a861ea649e38119ef4321c09f6cccae526d0a Any computer that has this package install...
Malicious code in grafana-sentry-datasource (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f64ac119461c222b3a037a8fb79c1239e05e03cbce16d87f17ce6f1bb3a857a7 Any computer that has this package install...
Malicious code in lana-docs-site (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware accb6c4448ea69a1e84f45256921e0bca2f42e0f2cb6ad93d0e60ed843b843f0 Any computer that has this package install...
Malicious code in fider (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e33a8112ebd5139a50734b023e3b935048b314e8fd783e73722625dd79241c69 Any computer that has this package install...
Malicious code in unisocks (npm)
This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7048c72cc0d604b91309e2009ab3661aa15f1f3199079d12871d1a54a2041b6b Any computer that has this package install...
Malicious code in @hi.editor/core (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon...
MAL-2024-12181 Malicious code in @hisdk/mail-mac (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 396c6b416f2f3b292fa9331c7d139c100af0b05e27f9f92ab265b9767c90ec41 Any computer that has this package installed or...
Malicious code in @dz-lib/dz-cli (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ec9421e5d1892420fe8194f8361f8c856ef3b31d6996e2554d840fc850e59a1e Any computer that has this package installed or...
Malicious code in @hisdk/mail-mac (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 396c6b416f2f3b292fa9331c7d139c100af0b05e27f9f92ab265b9767c90ec41 Any computer that has this package installed or...
Malicious code in flybook-table (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon...
Malicious code in interview-question (npm)
This package has a preinstall script to download an execute a Go-variant of the Cobalt Strike beacon...