Malicious code in petameta (npm)

The package petameta was found to contain malicious code...

Malicious code in browserify-robotics-loglevel-stratigraphy (npm)

The package browserify-robotics-loglevel-stratigraphy was found to contain malicious code...

Malicious code in node-cache-manager-hazelcast (npm)

The package node-cache-manager-hazelcast was found to contain malicious code...

Malicious code in audaces-perps-rest-server (npm)

The package audaces-perps-rest-server was found to contain malicious code...

Malicious code in bartok-rest-server (npm)

The package bartok-rest-server was found to contain malicious code...

Malicious code in bundle-minify-query-void-java (npm)

The package bundle-minify-query-void-java was found to contain malicious code...

Malicious code in third-party-library (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0f1110748d4cb8dc4eb9d93bf92e8da0c61f4f1de420b3d738ed106689c7a1d9 The OpenSSF Package Analysis project identified 'third-party-library'...

Malicious code in sha256-validator-pack (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 453f997676ddfb37b97659a39bdc5de8d8c2fc1b070f5feeda72545030850113 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in blocknote-editor (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...

Malicious code in k6-studio-ui-components (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 066503bf35690fb58f38fa44cc7e64d0eaf5a0e5f352167029b6a5ed00a448b2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in discord-rpc-presence (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 643ae80a9f56002d18b03d93bba332b1c1c49c5d45f995a1269030b4a3c90b7e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in next-sweetalert2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a8045e5172fb2ccb88fcd16b2a66207ca2896e30031828b942dffcf423ebbb6d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in some-private-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 74c2eb038ada13a2b2c86adb72a460b9a2e327e9682b3ecce38839b4f8de281d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in @by-device/fingerprint (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a0b58f4a1374ff973bdb10f587a6d3bc80207b12a8a85a4edc4f3db66139847f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in veriftest1asdlaa (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 84fe70a8f5e34c8334d7284bcc9b71826210f029708a53a6ec4b9bb90a33054b During installation, the package attempts to exfiltrate cloud tokens --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...

Malicious code in meowsapi (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f59e6347816a732ab5ddebfd141e113bb5cca799fa8b8466f194dbff1a1e428b Importing the module starts delayed downloading and starting a remote executable identified as BlankGrabber infostealer. --- Category: MALICIOUS - The campaign...

Malicious code in helmet-fastapi (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c1f805932ecbcd95197e98c6e2336eb773252abf5615fe135076d1848cb90395 Package contains hidden code adding a backdoor - a WebSocket path handler which will execute commands sent by an attacker knowing the path. In addition, it add...

Malicious code in rif-token-contracts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 05165c539111a84ce983abfe2dbe4cadf7b601ad72a0676be43e8c101e5fc752 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in phonepe-payment-capacitor-example (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c02a4bb7c5999768baf3318427f8aaffad151f7838f8bfdfee9ad952a24db492 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in flask-auth-sys (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a241889bfae20aee5395660063d13f337aa9733c14b02bf2edb004d6d36e1d41 On importing the module, the code attempts to span a reverse shell. In the current version, the remote domain does not exist --- Category: MALICIOUS - The...

Malicious code in acapy-agent-didx (PyPI)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in github.com/shallowmulti/hypert (Go)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security 25d0e55a48f82ab8ddd5e90d258c133505fa7fea03b775c1987e0dd7f9453f08 Malcious typosquatting Go packages targeting Linux and macOS systems used to as a loader to download and run another malicious payload...

Malicious code in transaction-analysis (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 49ab525dda997f7abc07f4ef30a62443e40a0f01e218b74d6db9b378fe51f2a4 Package contains obfuscated code that exfiltrate basic data and awaits for commands from the remote server to execute them. This is a malicious copy of...

Malicious code in libcrypt (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 65114ab78e2e9c6bdb0302cf5091d6177a082c11eb4dda08a2aff13d5a0a9c18 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in odyssey-storybook (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 21ce9d73f12a7c3aaf67cec3e8f097a12ee60fd024262c709adc6a096289c9c3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in ava-ilable-down-load-mp3-today-2017-64747-near-to-the-wild-heart-of-life-n5sic-lqeaui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1eb2e3b8cb8e76a52b3c084dd367ab850cb06532d4dd602e38805bd4838655dd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in sharp-libvips-linux-x64 (npm)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in multiple-keys (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware da4233e3b39779d62d23e578c4ceb25ff5a78a6f0285b709b91ef0cf36ed7d7e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in design-system-components-angular (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fa76659f890e0326b1b129f7cf3c39dd4b242fa297217ef6b98e4b34fa602ba2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in @diotoborg/soluta-amet-enim (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 67b660a1a30d72aed771dbf40cddd72a94a7565c773a8faa1713dab709b834e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in bit-node-tools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 375c209857233b09af6c89beaadb9668701896b791ba2fb5271b0568fca81346 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in pitest117 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 43f26cba5babf757388adacc9a7c7affeb182356ccf10416c13e9826e6eaf9a4 Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...

Malicious code in python-project-wntliogu (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 82bffbaa9f040ea19ff4e9fe678df68b1be71418f80fcd665ecc4f729512df19 Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...

Malicious code in rtxt-dep2 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 3a0cd03149005afa6cc505bea16d80c21f5bbbd226c16c659ed6abb41cf730a2 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in c8test (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 b94beda1abe6cca6b53ac1891e3a3baea95df1b8c260dd9f4ea15998e26391b9 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in szn-sasanka (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5b323a63a0911115caea7f87a1663849bcac57bfe4787cec2f2d72adc816a758 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in check-codeowners (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 946e4f02e3bc9fafb3561655eaaf71128a7a37469e09460b0b9f3f204e850185 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in google-appengine-ext (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 142a8fbc789954291f2b01aab5ac1d139eaaf4f9f490fd6dcf30da438f7d8e51 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in adafruit-imageload (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e0e8ec25dd99d8d025b6caf7867a8f047bf68ee2cea72415e42435d9e000d212 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in dnuhstng (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware be6d446bc6d669d6da31df321e94b5f2cd490daa74b82170765af93d4f734dc9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in ethereuim (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 3b0ffb55c54f64ae4381a989cd33833fe7120cb10f440b31d452004030ad65f5 --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: funcaptcha-ru Reasons based on the campaign: - infostealer...

Malicious code in ruby-playing_cards (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in moving-average (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in has-changelogs (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in github_release-stats (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in font_roboto-rails (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in ebay-enterprise_affiliate_network (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in ebay-client (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in dt_rake (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in bosh-cli_plugin_redis (RubyGems)

--- -= Per source details. Do not edit below this line.=-...