Malicious code in klaudius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f0b40ecfc7aa434ac63d620d4aaab0434dd57b0fac274bb9f5d1514e263be4a3 The package's CLI bundle dist/bin.js and an associated chunk dist/chunk-SZ4KCTSL.js contain hardcoded fetch POST calls to https://api.telegram.org, t...

MAL-2025-191596 Malicious code in telegram-api-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9de851a49849595878a33272868046f71f86d67b3664a73c4357dd58b2640fc The package telegram-api-test was found to contain malicious code...

Malicious code in telegram-api-test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e9de851a49849595878a33272868046f71f86d67b3664a73c4357dd58b2640fc The package telegram-api-test was found to contain malicious code...

Malicious PyPI, npm, and Ruby Packages Exposed in Ongoing Open-Source Supply Chain Attacks

Several malicious packages have been uncovered across the npm, Python, and Ruby package repositories that drain funds from cryptocurrency wallets, erase entire codebases after installation, and exfiltrate Telegram API tokens, once again demonstrating the variety of supply chain threats lurking in...

Telegram-Story-Scraper - A Python Script That Allows You To Automatically Scrape And Download Stories From Your Telegram Friends

A Python script that allows you to automatically scrape and download stories from your Telegram friends using the Telethon library. The script continuously monitors and saves both photos and videos from stories, along with their metadata. Important Note About Story Access ⚠️ Due to Telegram API...

Hackers Exploit Telegram API to Spread New Golang Backdoor

The new Golang backdoor uses Telegram for command and control. Netskope discovers malware that exploits Telegram's API for…...

Handala’s Wiper Targets Israel

Handala’s Wiper Targets Israel By Tomer Shloman · July 26, 2024 This blog was also written by Mathanraj Thangaraju and Max Kersten CrowdStrike’s Falcon agent caused downtime for millions of computers across the globe beginning July 19. This event caused panic and chaos, which threat actors quickl...

Exploit for Unrestricted Upload of File with Dangerous Type in Likeshop

Badges !MIT Licensehttps://img.shields.io/badge/Licens...

Exploit for SQL Injection in Valvepress Automatic

Badges !MIT Licensehttps://img.shields.io/badge/Licens...

Exploit for CVE-2024-4956

Badges !MIT Licensehttps://img.shields.io/badge/Licens...

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Checkpoint Quantum_Spark_Firmware

Badges !MIT Licensehttps://img.shields.io/badge/Licens...

Exploit for Open Redirect in King-Theme Kingcomposer

Badges !MIT Licensehttps://img.shields.io/badge/Licens...

Exploit for Open Redirect in Plesk Obsidian

Badges !MIT Licensehttps://img.shields.io/badge/Licens...

Exploit for Improper Authentication in Papercut Papercut_Ng

Badges !MIT Licensehttps://img.shields.io/badge/Licens...

Exploit for Incorrect Authorization in Wpserveur Wps_Hide_Login

Badges !MIT Licensehttps://img.shields.io/badge/Licens...

Exploit for Cross-site Scripting in Phpmyfaq

Badges !MIT Licensehttps://img.shields.io/badge/Licens...

Exploit for Insecure Default Initialization of Resource in Apache Superset

Badges !MIT Licensehttps://img.shields.io/badge/Licens...

Exploit for Cross-site Scripting in Cpanel

Badges !MIT Licensehttps://img.shields.io/badge/Licens...

CVE-2024-21400

creationtimestamp| type| source ---|---|--- 2024-03-13 07:55:10+00:00| seen| https://t.me/itsecnews/4191 2024-03-13 08:30:38+00:00| seen| https://t.me/kasperskyb2b/1170 2024-03-13 11:41:56+00:00| seen| https://t.me/truesecator/5514 2024-03-13 20:18:31+00:00| seen| https://t.me/ctinow/207112...

Qubitstrike Targets Jupyter Notebooks with Crypto Mining and Rootkit Campaign

A threat actor, presumably from Tunisia, has been linked to a new campaign targeting exposed Jupyter Notebooks in a two-fold attempt to illicitly mine cryptocurrency and breach cloud environments. Dubbed Qubitstrike by Cado, the intrusion set utilizes Telegram API to exfiltrate cloud service...