Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

HackRead
HackReadadded 10 hours ago2 views

Lazarus Group Uses npm Brandjacking Campaign to Target Developers

North Korean Lazarus Group targets npm developers with brandjacking packages that mimic trusted tools, drop malware and put credentials at risk...

5.8AI score
Exploits0
HackRead
HackReadadded 2026/04/10 4:55 p.m.1 views

GraphAlgo Scam: Lazarus Hackers Register Real US LLCs to Spread Malware

ReversingLabs has discovered a fresh wave of the graphalgo campaign in which North Korean Lazarus hackers are using fake Florida LLCs, mimicking SWFT Blockchain, and using GitHub typo-squatting to target developers with malware...

5.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/08/17 12:0 a.m.2 views

Malicious code in pyjoul (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx e55dbe349f945728a3c8ffe4453ba669e734eb355c732c8c01dfab6b5e687fce Malicious packages campaign targeting developers, payload is hidden using Steganography, exfiltrate host information...

7AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packagesadded 2023/07/26 12:0 a.m.3 views

Malicious code in tema-cnp (npm)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx c2745cc070d505850bb1ac172e24c2433bbec8ea8b59619e7e67ecd862f10635 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...

7.2AI score
Exploits0References2
Rows per page
Query Builder