6 matches found
MAL-2026-4336 Malicious code in webservices.rest-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5c9c78a4d0c87def69bbc5337e41a730e7ca6ae898426759915f053dc584581c package.json declares both preinstall and postinstall hooks that execute index.js, which exfiltrates installer data to a base64-encoded Cloudflare...
Malicious code in oxrvxxxxxaslllcaj (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware cbb43c3aa5e1fe9b33fc7a3c3a439ef7edd69817df8984551602b834f7b64584 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in cordova-plugin-voxeet2 (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 96ae7ef5d43ef45901a8613d236559761bb72ca1729594ffc8b3df8200250094 Any computer that has this package installed or running should be considered fully compromised. All...
Malicious code in @art-ws/package-base (npm)
The package was compromised and malicious code added. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 83ba9ddbeaff9ca9f10da444f6eebc52dd7ffa99def6e187eab42dac24a4d7de Any computer that has this package installed or running should be considered fully compromised. All...
Malicious code in xo-wallet-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 94fd297d5bd2cbf348e88599e570974a4fc9f65f7bf3cdda6bf6a69e8dc8dd44 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in wix-test-package (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c1f32874e6b4601548e20068ae573d90851c71b83f79bf2505dc2795f55e5aba Any computer that has this package installed or running should be considered...