Researchers Uncover Chrome Extensions Abusing Affiliate Links and Stealing ChatGPT Access

Cybersecurity researchers have discovered malicious Google Chrome extensions that come with capabilities to hijack affiliate links, steal data, and collect OpenAI ChatGPT authentication tokens. One of the extensions in question is Amazon Ads Blocker ID: pnpchphmplpdimbllknjoiopmfphellj, which...

EUVD-2017-6207

Malware in sbrugna...

Google Fined $379 Million by French Regulator for Cookie Consent Violations

The French data protection authority has fined Google and Chinese e-commerce giant Shein $379 million €325 million and $175 million €150 million, respectively, for violating cookie rules. Both companies set advertising cookies on users' browsers without securing their consent, the National...

Malicious code in shein-card-balance-389 (npm)

The package shein-card-balance-389 was found to contain malicious code...

MAL-2025-33078 Malicious code in shein-card-balance-389 (npm)

The package shein-card-balance-389 was found to contain malicious code...

Malicious code in shein-feedbcak (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 379450f40d6ee2e16f34b93d2fec2253b578f9c9160b45de1bafcaa042ce4c9f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in shein-uesragent-detection (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bdca3a489ad131847e2e1677f86805c89bd1587e8a76fb2fea69415952284909 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-2233 Malicious code in @shein-components-test-ump/text-to-speech-tool (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5a51a7cd403f53cbbc65d804830060941af889d9ec0f60acd449b59f89a081e2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in eslint-plugin-shein-soc-raw (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-2331 Malicious code in eslint-plugin-shein-soc-raw (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2023-8523 Malicious code in shein-lego (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 71ef45c393ee6ca8301bbc37b170265fd5ea03cca45f8e48d8e1c1b085c05665 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in shein-lego (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 71ef45c393ee6ca8301bbc37b170265fd5ea03cca45f8e48d8e1c1b085c05665 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in shein-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ffd735034ffb185fb7097d36fd4f17ba7dc5192af368ebd38c8017718f236168 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in shein-bbl (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis eda3e2bdbc515dead593a808202f565c6b47090d1b73b40cda908b6786eaf4ac The OpenSSF Package Analysis project identified 'shein-bbl' @ 0.1.4-beta npm as malicious. It is considered malicious because: - The package...

MAL-2023-1295 Malicious code in shein-bbl (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis eda3e2bdbc515dead593a808202f565c6b47090d1b73b40cda908b6786eaf4ac The OpenSSF Package Analysis project identified 'shein-bbl' @ 0.1.4-beta npm as malicious. It is considered malicious because: - The package...

Microsoft Found Shein App Copying Clipboard Content on Android Phones

By Waqas An old version of the Shein app was found to be accessing and copying clipboard content on Android devices before being detected and reported by Microsoft to Google. This is a post from HackRead.com Read the original post: Microsoft Found Shein App Copying Clipboard Content on Android...

Shein's Android App Caught Transmitting Clipboard Data to Remote Servers

An older version of Shein's Android application suffered from a bug that periodically captured and transmitted clipboard contents to a remote server. The Microsoft 365 Defender Research Team said it discovered the problem in version 7.9.2 of the app that was released on December 16, 2021. The iss...

Shein's Android App Caught Transmitting Clipboard Data to Remote Servers

An older version of Shein's Android application suffered from a bug that periodically captured and transmitted clipboard contents to a remote server. The Microsoft 365 Defender Research Team said it discovered the problem in version 7.9.2 of the app that was released on December 16, 2021. The iss...

Protecting Android clipboard content from unintended exposure

Considering mobile users often use the clipboard to copy and paste sensitive information, like passwords or payment information, clipboard contents can be an attractive target for cyberattacks. Leveraging clipboards can enable attackers to collect target information and exfiltrate useful data...

Malicious Package

Overview shein-bbl is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...