3 matches found
Malicious code in wrf-distribute (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2de6c33366b6a4984966301e4c28d68e52b28012251e02e8922736664cc6347f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-970 Malicious code in wrf-distribute (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2de6c33366b6a4984966301e4c28d68e52b28012251e02e8922736664cc6347f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious Package
Overview wrf-distribute is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package wa...