19 matches found
Malicious Package
Overview token-usage-tracker is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2026-4283 Malicious code in token-usage-tracker (npm)
Ten packages published by npm user asdxzxc at version 1.0.10 target developers working on AI and LLM tooling. Each package masquerades as a developer utility while executing a two-stage payload triggered via postinstall: package.json → lib/setup.js → lib/worker.js. Credential harvesting:...
Malicious code in token-usage-tracker (npm)
Ten packages published by npm user asdxzxc at version 1.0.10 target developers working on AI and LLM tooling. Each package masquerades as a developer utility while executing a two-stage payload triggered via postinstall: package.json → lib/setup.js → lib/worker.js. Credential harvesting:...
Malicious code in usage-tracker-janus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8998ae7ec51b23bfdefe724e7c4bc34ad623362708f171a1c3ffcf4e98be15e0 The package usage-tracker-janus was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-204508
Malicious code in usage-tracker-janus npm...
Malicious Package
Overview usage-tracker-janus is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2025-192644 Malicious code in usage-tracker-janus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8998ae7ec51b23bfdefe724e7c4bc34ad623362708f171a1c3ffcf4e98be15e0 The package usage-tracker-janus was found to contain malicious code. Source: ghsa-malware...
EUVD-2025-34841
Malicious code in usage-tracker-secured npm...
MAL-2025-48440 Malicious code in usage-tracker-secured (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f1b7a443b3167fff4524481ab0e2a965023fdb4379674c580d905e30aacc7f70 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in usage-tracker-secured (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f1b7a443b3167fff4524481ab0e2a965023fdb4379674c580d905e30aacc7f70 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in usage-tracker-public (npm)
The package usage-tracker-public was found to contain malicious code...
MAL-2025-37960 Malicious code in usage-tracker-public (npm)
The package usage-tracker-public was found to contain malicious code...
SUSE CVE-2018-3211
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Serviceability. Supported versions that are affected are Java SE: 8u182 and 11; Java SE Embedded: 8u181. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where...
MAL-2022-6860 Malicious code in usage-tracker-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4d8df5ba36a0e32ee17b381dd4aecaf374318fa041a1746ca1c6f38cff660fcf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in usage-tracker-core (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4d8df5ba36a0e32ee17b381dd4aecaf374318fa041a1746ca1c6f38cff660fcf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
JDK: unspecified vulnerability fixed in 8u191 and 11.0.1 (Serviceability)
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Serviceability. Supported versions that are affected are Java SE: 8u182 and 11; Java SE Embedded: 8u181. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where...
This Week in Security News: Apex One™ Release and Java Usage Tracker Flaws
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, Apex One enters as the evolution of Trend Micro’s endpoint security solution for enterprise. Also, learn about Java Usage Tracker’s new...
CVE-2018-3211
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Serviceability. Supported versions that are affected are Java SE: 8u182 and 11; Java SE Embedded: 8u181. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where...
Oracle Java Usage Tracker usagetracker.properties Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on vulnerable installations of Oracle Java. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of a...