When the Abyss Looks Back: Unveiling Evolving Dark Patterns in Cookie Consent Banners

To comply with data protection regulations such as the EU General Data Protection Regulation GDPR and the California Consumer Privacy Act CCPA, websites widely deploy cookie consent banners to collect users' privacy preferences. In practice, however, these interfaces often embed dark patterns tha...

EUVD-2025-175838

Malicious code in umbra-farout-barnard-redshift npm...

EUVD-2025-175541

Malicious code in winston-leda-mesosphere-umbra npm...

Malicious code in server-nebula-cosmiconfig-umbra (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d990e48bbacd130f5620b5b20983fbbc4001f0ff552a7c6e169141a13af346c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-178346

Malicious code in iota-framework-umbra-uranology npm...

EUVD-2025-179912

Malicious code in cache-umbra-geoarchaeology-server npm...

EUVD-2025-175836

Malicious code in umbra-jekyll-foundation-graphql npm...

Malicious code in umbra-iota-graphql-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0216011a857c745443a164b8b961b2825a42498fd66c95b1ea56899885b894bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-175839

Malicious code in umbra-enif-sirius-lightyear npm...

EUVD-2025-177011

Malicious code in promise-umbra-css-loader-postcss-loader npm...

EUVD-2025-179808

Malicious code in ceres-redis-umbra-terser-webpack-plugin npm...

Malicious code in umbra-enif-sirius-lightyear (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b1d6e28e0423c02db3969a8742d5aa784afb117a4d8361b30eaf8032885dbdd8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186821 Malicious code in eris-umbra-dotenv-scorpius (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7dbf7714f75abefdecf0f36cce8d8391b67049c271697d541efac035b1b66ae5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-175837

Malicious code in umbra-iota-graphql-callback npm...

Malicious code in sirius-stop-umbra-spawn (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e55a14a033b2c4791dbf3754b9d92b6fe7fba60595a0c5234a281f5b9d0c6b0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in cache-umbra-geoarchaeology-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63b325ee42e9c4fb0b6333f6448be22adc3ef9fa102f3529f68c8eb58d077bf4 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2025-176412

Malicious code in server-nebula-cosmiconfig-umbra npm...

EUVD-2025-180221

Malicious code in auth0-sociobiology-apollo-umbra npm...

EUVD-2025-179061

Malicious code in eris-umbra-dotenv-scorpius npm...

EUVD-2025-175834

Malicious code in umbra-octans-ablation-deneb npm...