Malicious code in myads-layout (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8d196800be4de842ce4eb526181a86b7d78e5e3851954256a68d9cda3dab4a89 The package myads-layout was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in @reimorg/config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b715386d6331820f6ad234559c9b38d82c81bd4e0ff2ba695a8f509a4a0b9d81 The package @reimorg/config was found to contain malicious code. Source: ghsa-malware 01b3357726455a4a24aecc9b4255f7ea96cab434482b28a50e5d48f06e3cf1d...

Malicious code in express-configer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e492b9087ab21198777e586b9d21eade1fe2948bb67f1ab484c7274056861276 The package express-configer was found to contain malicious code. Source: ghsa-malware 8484436a0b43b94054c0fa7ceb955362a6557d9bef3019e2fae2e51e42ff1f...

Malicious code in sap-code-style-guides (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 13203a88392c91986f587e28ca25120b54f0c4d4ee5dd2c330c2bbbe6243203a The package sap-code-style-guides was found to contain malicious code. Source: ghsa-malware...

Malicious code in narrow-array (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 508eafee6916ba29ade3caf0722e7bffe693e53fa35a4e74f0dc385950778f34 The package narrow-array was found to contain malicious code. Source: ghsa-malware 8bbee1a11c9aa9d6feb751063161f9802c6245890a9764cdddf190d3357df462 A...

Malicious code in devtools-webhook-cicd-utils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 807557cb6ac51aece00eeb28f55b89815176c95172780dcdded46b667f843771 During installation, package installs a script that listens for remote commands and executes them. The script is also added to autostart configuration and...

Malicious code in ntoutils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 15b6e8b1974bbd5ee6ee5e5abe0619080d87644b200fd8fc410f70a2f23213ff Importing the module downloads and runs a remote executable identified as malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

Malicious code in json-web-sources (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5b1334dba3ed3954154395d5993332e1deb8b238be09d0adcd260e3b35d98acc The package json-web-sources was found to contain malicious code. Source: ghsa-malware 7b5b7f3896b01dd45503daa7565b91666029b06751c908d7e41fa1ccd23ca3...

Malicious code in http-notifier-test (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 876fd5ae23d7c051fa55647bc5b152a7905505782e78ca9536b161318d2e000f Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in teligram (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 8090b17ada40e394e1d9df27c6fe6c22db7eed330f00e44ee1cc4d94bfbf3fef Package contains a Telegram bot for remote control of the machine. While this doesn't start automatically, this behavior is not disclosed by the package...

Malicious code in hardixx-code (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c0eeb07f1a0f9149c6e22016d85bcc59e5d0bbbac9514fbef9a2ba0289bf75fe Version 1.0.2 introduced loading obfuscated code during importing the module. However, distributions uploaded to PyPI lack the necessary file storing the code...

Malicious code in thread-pipeline-test (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 2d7de9849aa6d6194b8d6fdf574c6c56c3de7cb75ad338f2428fc7f1374e4280 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in web3-chain-sinon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d656a8031870a05e2b7fa8dec1f3f9b9b48c3d8de3d93df42c787c139b0693a5 The package web3-chain-sinon was found to contain malicious code. Source: ghsa-malware f522ddb6d36708e509e4e4074bed2658a3a1e4101d4a45bb588e08c611cc33...

Malicious code in web3-sinon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e6990443632c3224a5e897d1747fcd76f782eda8d020447076d59cf305b03c82 The package web3-sinon was found to contain malicious code. Source: ghsa-malware 7d195e4b1eda9212f69e313de4107deae82670a9615ec25b86c8aaaf3df0e1f9 Any...

Malicious code in moveworks-pipeline-test (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 bf307b5f3cf29ebae108dfd8b8767c38bc26da4a5bb4ca3f82ed63e137921531 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in @rsgweb/utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ee9f14ff2b440c9d947019c65ffaa29df41116c3e35f18691cfcce733246790a The package @rsgweb/utils was found to contain malicious code. Source: ghsa-malware a9a98e6a12ac6be8573661e76ab7342baf0c83aae4d1907c482230dd5606dbc9...

Malicious code in @rsgweb/tina (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fedfc10f9721045fdfa303f918c63315e6863b5acb7f3d86443a03333e1994b The package @rsgweb/tina was found to contain malicious code. Source: ghsa-malware 4636b5e7c22aa34f9aea154f9b4ca825a51ed64947c6a0c2eab7203e24967a89 A...

Malicious code in @meli-lint/eslint-config-base-ts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4086f80598ff1b89ade2e3e2efb54b1a60f19cdc764415d7d52738252eb98f77 The package @meli-lint/eslint-config-base-ts was found to contain malicious code. Source: ghsa-malware...

Malicious code in @sporting-life/sportinglife-be (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f4b24a7ddfb4409a4f55d56daff3a71ecf2b84b8f99e99c3548b431fb9a885d The package @sporting-life/sportinglife-be was found to contain malicious code. Source: ghsa-malware...

Malicious code in @sporting-life/sportinglife-betslip-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03ea37f49a71528d3b04ca0f85062647957839058cc40ad9ce8d1a60a1dd51c6 The package @sporting-life/sportinglife-betslip-sdk was found to contain malicious code. Source: ghsa-malware...

Malicious code in ac-dom-events (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f238a5b77b3e11372b1aa3ce3a92c8faf8ec01536ec65004a05051de2ec306c The package ac-dom-events was found to contain malicious code...

Malicious code in ac-dom-styles (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e39cbc9f0e4b0b813dacd1b2dbe7211e456f56b12dc39033aaa4f20064b90e7 The package ac-dom-styles was found to contain malicious code...

Malicious code in ac-feature (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d4336ebc941f06184c39e082b6d53167ba1466dad57a4a05936446980dd4759b The package ac-feature was found to contain malicious code...

Malicious code in adobe_pipeline_test (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f7e438937c9c04fd06645a505f5bd509ee3c1fa942be02cefa881023f849b781 The package adobepipelinetest was found to contain malicious code...

Malicious code in ac-element-engagement (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 781104558212062e46f87c009a2a0af57fb00f707c878b53dfc5a7c241cce06b The package ac-element-engagement was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in ac-checksum (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 421654f0d216d3cb6af35eb9973ccd59d6d8c7c3d8c618bf1f49343a7756aa47 The package ac-checksum was found to contain malicious code...

Malicious code in greeter-pro-test (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 14dfc4441f09da7c2365f0bda8f0406dfbba98c6c127d94689f8acbbb0dafbed Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in metadata-checker (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 222755e960642163a0918eeb42baef3dedec6676e084a02742210fb83b7d99e5 Disguised as metadata checker, packages are designed to exfiltrate hardcoded or given data to an obfuscated remote target --- Category: MALICIOUS - The campaig...

Malicious code in internallib_v157 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0d07f4a0d2270cdcb827bb50e9f546d7c4ab3b07ede66343b90478831a731b83 The package internallibv157 was found to contain malicious code. Source: ghsa-malware 2a4eddb6af3191b7183a9223407a3a1b9fb4e1b4e96da5ee15af1ae2f0515ac...

Malicious code in statssol (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 578ffe3c11af717c95f71893133a46e8e418742109d414583b3ccc5044fa3a99 On importing the module, a remote code is executed. At the moment of analysis, the remote URL did not return any valid script, presumably as the package was...

Malicious code in test-for-ppe (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 11b30802efbc46f73d07dbb7b80490e86a7799e4a3abe24b128631de15ad41b1 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in cicd-ppe-test (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c9f1bfe5b5514b9b3a1ffad43be1f06d22faf12f031d325a9e689340c2ab16a0 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in z-shop-event-bus (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db54dce43d20da63e308cbd0ae4785225d093b5bd8b5d7c202e0f17a19ba11c2 The package z-shop-event-bus was found to contain malicious code. Source: ghsa-malware 4e51cf3a7018daddc8f2ba956f6e030ec57f8bad1e45102d29243c9dd13d48...

Malicious code in zalando-consent-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cfebb7ed5c3e35afeff037425cd019134eb927484b619019f7d11b13d6fe59c5 The package zalando-consent-api was found to contain malicious code. Source: ghsa-malware...

Malicious code in chai-async-promised (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b03e745920fbf2f3b25c5f9bcd2cd6814de348ff5ae3a0c5d8832f2494b2770 The package chai-async-promised was found to contain malicious code. Source: ghsa-malware...

Malicious code in http-emailjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8a9d03c741837fca8f8630f52d108b904dff1e056ff9b3bee73df663f691a59f The package http-emailjs was found to contain malicious code. Source: ghsa-malware cd9f06aa02e0e2ed77b3cedfb2e499b9f73530f95231f0fdc8dbeecc0bf2222a A...

Malicious code in reactt-sdkk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e1040004e57d22b532a81d886c4a8d7847ea79a24950a31bc092da3f8ff0e46b The package reactt-sdkk was found to contain malicious code. Source: ghsa-malware 56b1676235be8d72d317cee06957d2c7c8b4a3e8fd215927e13b76fdcfe44384 An...

Malicious code in mongooose_update (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0077f550d3b03f4fbc6ea54a833c0e5e80aba58bec307a6720065e7d08fafd12 The package mongoooseupdate was found to contain malicious code. Source: ghsa-malware f8f7054ae7149c28576adb91e81dabf2d46ed622ff6cb5d7ae81fec89a6d027...

Malicious code in mongoose_update (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91df51d75c82831870e737a45d083f0f75a4efd3fa5446b0c07a5c8c9ad910fd The package mongooseupdate was found to contain malicious code. Source: ghsa-malware c8c705834895c7083b2f00f874d9761f360f0208ee61aaeec6af5c2a806841e5...

Malicious code in react-sdkk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5be5e5cc941dec9a36d78d9de45e31cd604e0efacd37d1b78b62e452689b2cb7 The package react-sdkk was found to contain malicious code. Source: ghsa-malware 60e38e54e0f061a0da679900787b26c8949e350345b5ae5e12688321574bd4c7 Any...

Malicious code in si-wsl (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f69e85a7d134f9914d7c06214a1e54622c4cd2548036f89a7de197a219cb598a The package si-wsl was found to contain malicious code. Source: ghsa-malware 883fa40693e776d8efd0a25d3d0cb70348f12f2226eaf627c28c490b46790973 Any...

Malicious code in mongooose_updated (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f397bd93c8a607a5fb7cb6c4da24be0ed65157020f40d778f66f4bb8f0c6237b The package mongoooseupdated was found to contain malicious code. Source: ghsa-malware c02f092aac581da5247eba7163d5bcbb065ed41865e8eeb464ea1fedd8a4d6...

Malicious code in js-unpack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector baae4c9e1fb444bb1fc5b81f94160a8301839d4ce71d2cb92b50b06037018c73 The package js-unpack was found to contain malicious code. Source: ghsa-malware 5d6859e5b9008340bf7f7c4d7128416913b37bf079c0b1657f6e9857b6b9f0db Any...

Malicious code in serpapi-python (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 3a4ca074b37aa16372f05eaf3d15abe0f987e04793af53eade69fba1ae9cb405 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in pathfiles (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a96d53709493a07432f8619b9ca322fef0fb4bf9080a02da7e8f6bc03353b3c0 Disguised as file system manipulation library, the package hides an obfuscated code to communicate with a Telegram channel. Though the usage is not known at th...

Malicious code in dns-troubleshoot-toolkit-xyz123 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 98d7149f6ef706cf3aa58e9dbf0b206aec334710d6d960fc3d1336f7b67bd56e The package dns-troubleshoot-toolkit-xyz123 was found to contain malicious code. Source: ghsa-malware...

Malicious code in atg-atgse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4a895bff954a7aac56b4897d5f8582caded83251256152d5f9b7d55a53eedca The package atg-atgse was found to contain malicious code. Source: ghsa-malware c7041c7bfbb06e2e710b58e8aeff432e4774d756db057975426c046c7ea06339 Any...

Malicious code in callapirequests (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6e7fadeb48347b57805dea2f58d0f662e43170e0e4439a424f6dec66cf285452 Importing the module downloads and starts remote executable identified as malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

Malicious code in react-native-expofp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4359b8fd752707d568aa82cc795ecb3a73be0444e93f02795686a048bc2de8a1 The package react-native-expofp was found to contain malicious code. Source: ghsa-malware...

Malicious code in dise-pkt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b02da19d128c79fa9465ba506ff8f53abb3ef541a1da253174255be017c9fd97 The package dise-pkt was found to contain malicious code. Source: ghsa-malware 58b8c2811e173e83d76597b5cb08d80de79cbc72396b7ba7957ed6c15a6003a2 Any...