225918 matches found
Malicious code in webnoch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13f045d0850d50727da82888da15d6620d9328a2369899f721d607f1f4c403a5 The package webnoch was found to contain malicious code. Source: ghsa-malware 2a2b9fe8fd000b219aa46666ba8162fd132a3a15a5e0431d3c87c48b8c674eef Any...
Malicious code in @global-dax-ad-platform/dax-types (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 465668b4ba6f4c109320a3407a4db8d254d21a7f43af75ca5f8c1873c12c7f46 The package @global-dax-ad-platform/dax-types was found to contain malicious code. Source: ghsa-malware...
Malicious code in libsignal-yazxz (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91d9a354d77eada4afacd4c7b884cd9b3c9487007f544b4de3068e3c3348b593 The package libsignal-yazxz was found to contain malicious code. Source: ghsa-malware 04f7491f3c5360ba3b0ea3989fbc6fabe1d113734b5f7824bbe6fe274d830f8...
Malicious code in yazxzpedia-libsignal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a15db837581bcddfd86653905bef2911ba017a109d3275551bb040e60b61794 The package yazxzpedia-libsignal was found to contain malicious code. Source: ghsa-malware...
Malicious code in rullzdigital (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4cc6a9ad8fc8b038ba42a8fc8e3175d9e519340d5fbb9f36c946d50495efe670 The package rullzdigital was found to contain malicious code. Source: ghsa-malware 661254fd70224e2719b2260797867b5d063b1928340696642f8b683b04473b06 A...
Malicious code in xpack-video-submission (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7775173f0b8d7a6612c5a88940a5e371896db6f065c1b7c94bf87b2fcb6f51a1 The package xpack-video-submission was found to contain malicious code. Source: ghsa-malware...
Malicious code in xpack-arc-gateway (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 511c9b6f2c89a51bfa23febfa505e5ce2696cd6ae695ee0a7b057e194f10ca2b The package xpack-arc-gateway was found to contain malicious code. Source: ghsa-malware...
Malicious code in ethglobal-finale (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08bdc506129e3fb599d1bb0f5c3a369199b3f58ecda5d8c869d47f25847da6ad The package ethglobal-finale was found to contain malicious code. Source: ghsa-malware 051d643dd2d78f5cfda5a7945e560297dae2d0d8abe72d2b1725846b34951f...
Malicious code in fwk-amigapython-rest-server (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 9694db9e75e6f3f31137edfba3f3a51ede2881961ee930ea4a4b02e1be086fc8 During import, only in specific environments, a module containing code disguised as telemetry is imported. This code then exfiltrates sensitive environment...
Malicious code in @yaoii-bails/socket (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9d1cc19b4be6f6fb1f29ceb7bedcf05a41ca8135b966956c84c5095c1629126 The package @yaoii-bails/socket was found to contain malicious code. Source: ghsa-malware...
Malicious code in chai-vest (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b92343f543acb60949d618ec06160013b1536a63f3db5431a4e24b1eaac2ccae The package chai-vest was found to contain malicious code. Source: ghsa-malware 2d3a82ac6f8ebd7b7eba324f04e78d43fccef2f3ddf20c24014f4768dc50731d Any...
Malicious code in vitetest-lint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6cbee8ebb202928d2c275d45908d490671a30db31920b98424c756a9a830ee2 The package vitetest-lint was found to contain malicious code. Source: ghsa-malware b3e0378c987c13cbf5c10bec3168e92580b7ed74b69325c32d255e391ba97137...
Malicious code in expressjs-lint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c3397ee6d6f62a99d9c9e5610fa1bcf756e7a58ee90c8997b60c73a642b98a1 The package expressjs-lint was found to contain malicious code. Source: ghsa-malware 841065e5ca8d5b64f5b09bd37c92a9d8c52d7fa2a5e52cf0f24737700853f7b7...
Malicious code in jsnwebapptoken (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae3c045f3e6ca79915965788d10accc663e97bacc01fd6d94baa9bf781c38a0c The package jsnwebapptoken was found to contain malicious code. Source: ghsa-malware 26490b6a28e0b832aa5d386d750166e3cab2c2eb776706c9cf05fa16757758c6...
Malicious code in sketch-measure (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c54126529b9da791496e58ec744f6b7fe4fe769258480802eb5a3dcbc017d0d8 The package sketch-measure was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in jquery-display (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0873d8250c8747e1115c2866076509122f7e9ea8f4dde4dca4920d0f31f4874 The package jquery-display was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in naughty-package (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f541502f67ae3fc0e3558f52fb3e24b3857ab7bae8d0f8b45dc077d4d06ea0f7 The package naughty-package was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in socketxio (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 0ebdf2a14543a49aa2f1b1fdeb5a713a43da8326a370249ca370d9023283fb31 Using the provided function results in exfiltrating Discord tokens to a hardcoded location --- Category: MALICIOUS - The campaign has clearly malicious intent,...
Malicious code in marionette-react-view (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbf2cb3282bede4d5ddc03ed4c435fefa92ad5b6b18f51f7d7980578ec3bcf60 The package marionette-react-view was found to contain malicious code. Source: ghsa-malware...
Malicious code in dgxeon-soket3 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4804daec11623ef53c11da649a8621bd07ecb9009851a230b31d0c19adbef142 The package dgxeon-soket3 was found to contain malicious code. Source: ghsa-malware e6e291783a21c3b17598b212cf3376e3ea329d11ddea7783d88a5b6031f03304...
Malicious code in @zinley/orion (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb5209e6394eac2659ab3101809c2a59bf59a604346075a9d923de21d982812e The package @zinley/orion was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in foundry-toolkit (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3762da1ba2c85b0e0210a98196cefcf7914ab00712944886cb47409656409ac6 The package foundry-toolkit was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in launch-darkly-js (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b23f579bd6a28b963c5574bfb9148b80de6e59d96c6cb0d10f4d2a35d4c010ac The package launch-darkly-js was found to contain malicious code. Source: ghsa-malware e7a7ecd2770ab8b028a7d1fc05847c7049e1f276886eafb32222fcb81b1d79...
Malicious code in flycord (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b2071af47a4b327550f5614253b291b893e0741e6f2ebe3b4378a4794696d211 When the user uses the provided library, this package silently reports basic information and the result of the user's action to a hardcoded, obfuscated URL...
Malicious code in edx-salesforce (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c4ffac16b09d8312b28d4f65cd3d0f49ecccca9de9d7bbdac0aed694b28949b7 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in jslint-config (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11f2fdea43a54f2aac247e06fcc46c506979a5b1ccb5d178077662e61f747b74 The package jslint-config was found to contain malicious code. Source: ghsa-malware bddd0b74c730da3b118b7ef92befbc93b4b1379cc23ce7535e843151a84ae957...
Malicious code in jest-param-validator (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92f5050070ee0637ff34403bfa22fe7464561a421a99410e084c74e1bd023b08 The package jest-param-validator was found to contain malicious code. Source: ghsa-malware...
Malicious code in jest-node-paramset (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0195409dba352b70324fae3226921105e7658404675e2b9e8ab1e898c5bd84fa The package jest-node-paramset was found to contain malicious code. Source: ghsa-malware...
Malicious code in chai-lite-lib (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 07f2fa37570e8cdb391a3cddfb304c274e9726e3803b150b309816e971577bec The package chai-lite-lib was found to contain malicious code. Source: ghsa-malware c9a6f02ff3187727ac481d692d98a5614c02e6ca28616d6a9d48e7505e63656e...
Malicious code in chai-as-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11787dc50e16838c5d9f467010f0aaef81b3e55e916c4dd5d3fc811375994e6c The package chai-as-utils was found to contain malicious code. Source: ghsa-malware eb4208b63fd6e66931d39f1a2cd30193e87a717ce9c3ab68e5fce787d0ffdc78...
Malicious code in geocommunes-geoportal (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 818beaf9a2c40fe1d288ab5f872c124eb851c191110b30d222a884e0cbec50b5 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in @schedaero/yukon (npm)
Multiple evidences indicate malicious behavior: suspicious URL, data exfiltration, process exiting, and preinstall script execution. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b02868b7ba4a5e5bf754e692e348191e6974f2f707417f20f97b33f172cda4ca The package...
Malicious code in react-devtools-raycast (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 389c48f69049121e3e54751b68803d75bb5d571de2c8caf9c5e5d21f970612f0 The package react-devtools-raycast was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in rtxbbtyols (npm)
Package collects and exfiltrates sensitive info to oastify.com via HTTP in both index.js and setup.py with silent error handling. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a545131c0d6f2f8be5e52e2d51ba1ca4bc79095868f4b3c8169744110c68ecd The package...
Malicious code in @atg-aml-shared/kyc-domain (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 669af5ff086209bd01c2d69a805bb4272ccedbc54a1a1c0ce79b0794dc92daea The package @atg-aml-shared/kyc-domain was found to contain malicious code. Source: ghsa-malware...
Malicious code in rbxm-tools (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 89cc90689ea111d792b6dc071f39e060c440f492130ef599233cf0c4526f55e4 The package rbxm-tools was found to contain malicious code. Source: ghsa-malware 8b70ded43c5def740a34e33c94903aa957ced0450fffd844a1e0f0d4122aea94 Any...
Malicious code in en-thrift-internal (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f945d24e348a2afdfccd5c12b3b3a25280087db3e659a2de6002fb29347ce6ec The package en-thrift-internal was found to contain malicious code. Source: ghsa-malware...
Malicious code in vl-ui-body (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd90d73547d2e88c7a229ca9924f96c2d5e43bc5b1a8cb6b8a182d322d783510 The package vl-ui-body was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in vl-ui-checkbox (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b636f4789648035c4ee34537313e51b2e4ba39f2f4ea19b6d8744f61a12bce3 The package vl-ui-checkbox was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in airbnb-identity (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 40e5d276e9f30fb5f1071927366f0f13024da90b79fdfb1967cc5bd6d2330342 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in crypto-locale (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e346cfc58b0d84fb5b56985729f7ec92a226ef106b0ab10f299e65a62028834d The package crypto-locale was found to contain malicious code. Source: ghsa-malware 00686734db6a3f5477c1047f779749296dddb0c7eab5294000e13ed7b194c74d...
Malicious code in yarsg (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9c2ed8a6379e9f5833efbabb80221cc55ce3456a95d14c77ede9ab581bd8f577 The package yarsg was found to contain malicious code. Source: ghsa-malware 71a7932af2640f624c7daef39143653ecaa9d843bda52f61c22687210fc9961d Any...
Malicious code in claud-code (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 858992810c1a4133d95b6fa19033c07591db548a46df39b67e0d393d7dd212ad The package claud-code was found to contain malicious code. Source: ghsa-malware 5fe9842d778d45ad5b5e4d81db678d608711dd4b186e053569dae6f210481651 Any...
Malicious code in ethrpc-accounts (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 6372ce82342ae30022a83501fc348d1c63ec3cb27b19dba0678430efdfeeb077 This package is a clone of legitimate eth-accounts. The malicious code is hidden in the dependency, ethrpc-keys, which exfiltrates private keys. --- Category:...
Malicious code in ethrpc-keys (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f086c363123d21b52dc28b5a642db6c1eb84e01dc519995435476b19655d63a9 The malicious code is in the ethrpc-keys package, which is a clone of legitimate eth-keys, but contains a modification that silently exfiltrates the user's...
Malicious code in ably-forks (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector af3c510b1758cfff971e520dd0a78157b1e35918897519edc2fa0364bc46159b The package ably-forks was found to contain malicious code. Source: ghsa-malware b26088266049a671acc67187ede8f130532eb10e90e61293e96211f7ad0c1103 Any...
Malicious code in telebot-infee (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 660cdc2470d38cf51f0a232119dd9765cba56eb66412f12d3c09b40dd7bd8530 The package, distinguished as a speed testing or typosquatted Telegram library, contains a Telegram bot to perform remote control of the computer --- Category:...
Malicious code in pywin-simple-gui (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 43b40c0dbbbc187822a28a401194873adc73d13e531f2789c4227374f7ec9e26 The package pretends to be a development helper but, in fact, downloads a remote executable. Dynamic analysis reveals actions like disabling Windows Defender a...
Malicious code in vds-monarch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b9fc03a6a0feff43eef44ac91f0e9ce68c422a439528842f139bf1164366c66d The package vds-monarch was found to contain malicious code. Source: ghsa-malware 23d64f4764ccc88b26aa567b6d6828093fe8d35500ac67a19ced44828073dbf4 An...
Malicious code in compass-e2e-tests (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 27a245065291bd7252411254769a1764aab8e228c8ca161708734a3d47d3c9ec The package compass-e2e-tests was found to contain malicious code. Source: ghsa-malware...