Lucene search
K

23 matches found

The Hacker News
The Hacker News
added 2024/07/11 3:6 p.m.18 views

60 New Malicious Packages Uncovered in NuGet Supply Chain Attack

Threat actors have been observed publishing a new wave of malicious packages to the NuGet package manager as part of an ongoing campaign that began in August 2023, while also adding a new layer of stealth to evade detection. The fresh packages, about 60 in number and spanning 290 versions,...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2023/10/31 12:4 p.m.51 views

Malicious NuGet Packages Caught Distributing SeroXen RAT Malware

Cybersecurity researchers have uncovered a new set of malicious packages published to the NuGet package manager using a lesser-known method for malware deployment. Software supply chain security firm ReversingLabs described the campaign as coordinated and ongoing since August 1, 2023, while linki...

7.7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/10/12 1:17 p.m.34 views

Malicious NuGet Package Targeting .NET Developers with SeroXen RAT

A malicious package hosted on the NuGet package manager for the .NET Framework has been found to deliver a remote access trojan called SeroXen RAT. The package, named Pathoschild.Stardew.Mod.Build.Config and published by a user named Disti, is a typosquat of a legitimate package called...

7.5AI score
Exploits0
Snyk
Snyk
added 2023/10/11 9:0 p.m.2 views

Malicious Package

Overview ZendeskApi.Client.V2 is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on the victim's...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.1 views

Malicious Package

Overview Pathoschild.Stardew.Mod.BuildConfig is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on t...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.3 views

Malicious Package

Overview SolanaWallet is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on the victim's machine, al...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.2 views

Malicious Package

Overview Monero is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on the victim's machine, all whil...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.2 views

Malicious Package

Overview DiscordsRpc is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on the victim's machine, all...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.1 views

Malicious Package

Overview Pathoschild.Stardew.Mod.Build.Config is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.2 views

Malicious Package

Overview KucoinExchange.Net is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on the victim's...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.2 views

Malicious Package

Overview MinecraftPocket.Server is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on the victim's...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.2 views

Malicious Package

Overview IAmRoot is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on the victim's machine, all whi...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.3 views

Malicious Package

Overview Modern.Winform.UI is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on the victim's machin...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.2 views

Malicious Package

Overview CData.Salesforce.Net.Framework is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on the...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.3 views

Malicious Package

Overview Betalgo.Open.AI is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on the victim's machine,...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.2 views

Malicious Package

Overview CData.NetSuite.Net.Framework is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on the...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.3 views

Malicious Package

Overview Forge.Open.AI is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on the victim's machine, a...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.3 views

Malicious Package

Overview Kraken.Exchange is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on the victim's machine,...

9.8CVSS7.4AI score
Exploits0References2
Snyk
Snyk
added 2023/10/11 9:0 p.m.2 views

Malicious Package

Overview CData.Snowflake.API is a malicious package. This package contains malicious code that executes covert scripts upon installation or uninstallation, communicating with a remote server to download and execute additional malicious files, thereby deploying the SeroXen RAT on the victim's...

9.8CVSS7.4AI score
Exploits0References2
The Hacker News
The Hacker News
added 2023/10/04 11:16 a.m.43 views

Rogue npm Package Deploys Open-Source Rootkit in New Supply Chain Attack

A new deceptive package hidden within the npm package registry has been uncovered deploying an open-source rootkit called r77, marking the first time a rogue package has delivered rootkit functionality. The package in question is node-hide-console-windows, which mimics the legitimate npm package...

7.1AI score
Exploits0
Rows per page
Query Builder