3 matches found
MAL-2022-5479 Malicious code in promoaline (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cc5346dc9691cc6e2403841237cbb3e4d3caf9ab5bd91c266ebe4fa9cfc2491e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in promoaline (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cc5346dc9691cc6e2403841237cbb3e4d3caf9ab5bd91c266ebe4fa9cfc2491e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious Package
Overview promoaline is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...