Lucene search
+L

8649 matches found

OSV
OSV
added 2025/11/25 12:16 a.m.5 views

MAL-2025-191275 Malicious code in @oku-ui/switch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 740a6698034fbce630b1da1ce44728782b3f71faffd3ee2801c45b6a3f9e6f7e The package @oku-ui/switch was found to contain malicious code. Source: google-open-source-security...

6.8AI score
Exploits0References3
OSV
OSV
added 2025/11/24 11:41 p.m.4 views

MAL-2025-191428 Malicious code in solomon-v3-stories (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a3c2b76ec7ca12640f848ff834bd3a10c3c2f6247a9b372905bf57e2d9f2194 The package solomon-v3-stories was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References9
Snyk
Snyk
added 2025/11/24 8:33 p.m.4 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

9.8CVSS6.8AI score
Exploits0References3
Snyk
Snyk
added 2025/11/24 8:33 p.m.2 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

9.8CVSS6.8AI score
Exploits0References3
Snyk
Snyk
added 2025/11/24 4:24 p.m.1 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

9.8CVSS6.8AI score
Exploits0References3
Snyk
Snyk
added 2025/11/24 4:24 p.m.1 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

9.8CVSS6.8AI score
Exploits0References3
Snyk
Snyk
added 2025/11/24 4:24 p.m.3 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

9.8CVSS6.8AI score
Exploits0References3
The Hacker News
The Hacker News
added 2025/10/21 7:29 a.m.12 views

Google Identifies Three New Russian Malware Families Created by COLDRIVER Hackers

A new malware attributed to the Russia-linked hacking group known as COLDRIVER has undergone numerous developmental iterations since May 2025, suggesting an increased "operations tempo" from the threat actor. The findings come from Google Threat Intelligence Group GTIG, which said the...

6.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/10/14 12:21 p.m.12 views

Pixel-stealing “Pixnapping” attack targets Android devices

Researchers at US universities have demonstrated how a malicious Android app can trick the system into leaking pixel data. That may sound harmless, but imagine if a malicious app on your Android device could glimpse tiny bits of information on your screen—even the parts you thought were secure,...

5.5CVSS6.2AI score0.00122EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/14 12:0 a.m.17 views

Pixnapping: Bringing Pixel Stealing out of the Stone Age

Pixel stealing attacks enable malicious websites to leak sensitive content displayed in victim websites. The idea, introduced by Stone in 2013, is to embed victim websites in iframes and use SVG filters to compute on, and create side channels as a function of, those websites' pixels. Fortunately,...

6.7AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2025/10/08 4:0 p.m.9 views

Inside Russian Market: Uncovering the Botnet Empire

Eliran Alon contributed to this post. Inside Russian Market: Key insights from Rapid7 threat research The online cybercrime marketplace, Russian Market, has evolved from selling Remote Desktop Protocol RDP access to becoming one of the most active underground hubs for information-stealing malware...

7.3AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-13358

Malware in sbrugna...

6.1CVSS6.3AI score0.00571EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-6242

Malware in sbrugna...

5.4CVSS5.5AI score0.00644EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5890

Malware in sbrugna...

6.1CVSS6.5AI score0.11687EPSS
Exploits4References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-15889

Malware in sbrugna...

5.4CVSS5.5AI score0.00527EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2025/10/06 9:33 a.m.739 views

Exploit for CVE-2025-8061

Lenovo-CVE-2025-8061 PoC fo...

7.3CVSS7AI score0.00371EPSS
Exploits3
EUVD
EUVD
added 2025/10/03 8:7 p.m.28 views

EUVD-2021-29623

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.01647EPSS
Exploits5References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-3314

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.0098EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-29625

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.01647EPSS
Exploits6References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-35232

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00488EPSS
Exploits1References2
Rows per page
Query Builder