2 matches found
Malicious Package
Overview usaa-input-utils is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...
Malicious code in usaa-input-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8473436367d09c53aaf17637b278bfba50b5d72473cb36c7a01e7029216463d9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...