226438 matches found
Malicious code in vllm-plugins (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 4fa0706d497278a502d158c89d51645a6f4e8187ca325aacaa59facccf542a03 Generic campaign for all likely research / pentests, where the amount or art of collected data raises questions about the privacy, security and ethical side. -...
Malicious code in requests-core-plugin (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f7d809caa4cb4961377b3c02a06f90ce19136a36297191248a8c6cd289a809f2 During installation, package loads obfuscated code that then downloads and starts an executable. The final executable is identified as malware and appears to...
Malicious code in lyroxpy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a9016ac99840c4d68028c7b724382974154c9bf75b410da9c6b4a75ff6d20b1f The package contains an embedded archive with an executable. When importing the module, the embedded archive is run as a module. Code inside extracts the...
Malicious code in notification-saved-search-settings-podlet (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2059b78866965dce7f68bf358485c0f98eeb6c9befcf4455115c5d8623013e7f The package notification-saved-search-settings-podlet was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in search-savedsearch-podlet (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 878a9c43dd8ff489c2771eb72e59389391267772d0e64b6dea94a657d0ca7b3a The package search-savedsearch-podlet was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in bigmathix (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b200be57a4cdb466d56397968f69dd3845955ced56c5229608dbf03762106ff9 The package bigmathix was found to contain malicious code. Source: ghsa-malware 5fce43c0e03186c2441c8a54be7cb130625459fe9179665e242f223f0c7d2944 Any...
Malicious code in devtools-webhook-cicd-utils (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 807557cb6ac51aece00eeb28f55b89815176c95172780dcdded46b667f843771 During installation, package installs a script that listens for remote commands and executes them. The script is also added to autostart configuration and...
Malicious code in ntoutils (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 15b6e8b1974bbd5ee6ee5e5abe0619080d87644b200fd8fc410f70a2f23213ff Importing the module downloads and runs a remote executable identified as malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
Malicious code in thecorrectjames (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 53ae167216303d3e0d2eda2b5321b60fc5bf9431e16ae0caa507123ba45661a1 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in aligned-arrays (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5bde941864059bf74245ed1ebf09a7be97e6a01881536ec8ad3913ddf1c1226f The package aligned-arrays was found to contain malicious code. Source: ghsa-malware 4bea95feabe1220983f2c46796cd72f198d1c4125771146d4a3a788f2fdb3b8a...
Malicious code in moveworks-pipeline-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 bf307b5f3cf29ebae108dfd8b8767c38bc26da4a5bb4ca3f82ed63e137921531 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in @rsgweb/modules-core-feedback (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 45c68d1fafad6a94ebe843e20901dd8e5251d0b27b963d07e71ecefbd16c7465 The package @rsgweb/modules-core-feedback was found to contain malicious code. Source: ghsa-malware...
Malicious code in @rsgweb/tina (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6fedfc10f9721045fdfa303f918c63315e6863b5acb7f3d86443a03333e1994b The package @rsgweb/tina was found to contain malicious code. Source: ghsa-malware 4636b5e7c22aa34f9aea154f9b4ca825a51ed64947c6a0c2eab7203e24967a89 A...
Malicious code in @rsgweb/rockstar-account (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd40e663999d2780e2e131fd5da090045d623032e6c51db70d0bd65cf583101d The package @rsgweb/rockstar-account was found to contain malicious code. Source: ghsa-malware...
Malicious code in @meli-lint/eslint-config-base-ts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4086f80598ff1b89ade2e3e2efb54b1a60f19cdc764415d7d52738252eb98f77 The package @meli-lint/eslint-config-base-ts was found to contain malicious code. Source: ghsa-malware...
Malicious code in @sporting-life/sportinglife-betslip-sdk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03ea37f49a71528d3b04ca0f85062647957839058cc40ad9ce8d1a60a1dd51c6 The package @sporting-life/sportinglife-betslip-sdk was found to contain malicious code. Source: ghsa-malware...
Malicious code in ppe-test (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1914d3cfcb631f551660417c0441d7e6eb3929ee6c4cadd6088e551462ead553 The package ppe-test was found to contain malicious code...
Malicious code in ac-dom-styles (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e39cbc9f0e4b0b813dacd1b2dbe7211e456f56b12dc39033aaa4f20064b90e7 The package ac-dom-styles was found to contain malicious code...
Malicious code in ac-dom-events (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f238a5b77b3e11372b1aa3ce3a92c8faf8ec01536ec65004a05051de2ec306c The package ac-dom-events was found to contain malicious code...
Malicious code in ethers-lint (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 315365a10d9e3322792c18bdb8c5a8e620bbcc2a9ad8d5a1d5ef139ef6e47777 The package ethers-lint was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in test-npm-style (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 38db992411a56d07cbda15c79d3428dddd769488313604ade2606f11da3e6e4c The package test-npm-style was found to contain malicious code. Source: ghsa-malware d89c00ba3209ce1a4f9ffd6f70034eacdb716fcd4d36b0a7f51bca6ad53b9392...
Malicious code in 0xhash-utils (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6533d0ccd6be4affddc7247e6f5e925ac35fbe47d877eb2cc0ace6e493acc497 The package 0xhash-utils was found to contain malicious code. Source: ghsa-malware df192d86e51f442508e66c54064ef3c8d9c2cbe92133f87a522bc968dc4f6f45 A...
Malicious code in greeter-pro-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 14dfc4441f09da7c2365f0bda8f0406dfbba98c6c127d94689f8acbbb0dafbed Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in pipelinepoision-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 30985e20ed386fc211690f5618db078ae8c782039fcc36d1109955b74c3251ff Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in @purecore/rabbitmq (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e503973dbf2c860017e4ea8118ddec5cd43a537c32eb8fca24ac544a86d8822 The package @purecore/rabbitmq was found to contain malicious code. Source: ghsa-malware...
Malicious code in tailwindcss-animation-modern (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1c6fbd472c63dae399a454decb6c6c097b7ae23766e0962ec081f0ad685ea451 The package tailwindcss-animation-modern was found to contain malicious code. Source: ghsa-malware...
Malicious code in react-vite-sync (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9f5300073ebcda0869cf258bc5c567c6afc40942b14d14a97bfeaa2eaff1b9c The package react-vite-sync was found to contain malicious code. Source: ghsa-malware 971cc1d747c2d072e4a3cc272143be37bbd2162968dfd682012890e87cda562...
Malicious code in mdp-client-web (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3bae22cc58ac4c2a2b449514ef62c82fde3dd2d6d0d5697b3689f16c8583e62b The package mdp-client-web was found to contain malicious code. Source: ghsa-malware 070c26f2080c516dd8c197674dcc76a911d4dfb62242027e1d50a04c4536f0b2...
Malicious code in test-for-ppe (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 11b30802efbc46f73d07dbb7b80490e86a7799e4a3abe24b128631de15ad41b1 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in docusaurus-plugin-launchdarkly (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e875ce6b5b0d95c7100cdba68bed891c712b414716f07147e6a3f04f4f9b4789 The package docusaurus-plugin-launchdarkly was found to contain malicious code. Source: ghsa-malware...
Malicious code in deuro-landing-page (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b21bff5e6829c4c257d34d4ad60dd2d5d85f4f6fc67fdffaf74c86bb600ff7cb The package deuro-landing-page was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in cicd-ppe-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c9f1bfe5b5514b9b3a1ffad43be1f06d22faf12f031d325a9e689340c2ab16a0 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in z-shop-event-bus (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector db54dce43d20da63e308cbd0ae4785225d093b5bd8b5d7c202e0f17a19ba11c2 The package z-shop-event-bus was found to contain malicious code. Source: ghsa-malware 4e51cf3a7018daddc8f2ba956f6e030ec57f8bad1e45102d29243c9dd13d48...
Malicious code in chai-async-promised (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b03e745920fbf2f3b25c5f9bcd2cd6814de348ff5ae3a0c5d8832f2494b2770 The package chai-async-promised was found to contain malicious code. Source: ghsa-malware...
Malicious code in https-emailjs (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d8aff232c81a7253eeb9e10075207aebc5908976a9a1adf6009d750b444467db The package https-emailjs was found to contain malicious code. Source: ghsa-malware e6feff6e256b4c145082869f4ce5f64f2a2a15cab09caeef3e3d5735188aa0f6...
Malicious code in @fxinternal/netdiagnostics (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0e2484371522051117d2994af8795b9caef31467aaa40edfacfc8d80a45fd820 The package @fxinternal/netdiagnostics was found to contain malicious code. Source: ghsa-malware...
Malicious code in react-sdkk (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5be5e5cc941dec9a36d78d9de45e31cd604e0efacd37d1b78b62e452689b2cb7 The package react-sdkk was found to contain malicious code. Source: ghsa-malware 60e38e54e0f061a0da679900787b26c8949e350345b5ae5e12688321574bd4c7 Any...
Malicious code in tabulapys (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f43be05d02e16c7d381e105a4eae9a2701039d29435e6d83cb982f607bda623d Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...
Malicious code in fileupload-util (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 284fb08fce78b3881a87fa045e3cd78babfd4be9859ffd8be916952b1088fc19 The package fileupload-util was found to contain malicious code. Source: ghsa-malware 86e2a72f365ef548c52ca11a5bcfa8cbca1b7ff90e2e35aa34b8d9c2abb9c85...
Malicious code in eslint-config-stitch (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3747d49c7b72e1659dde0b66b3e7b95bd198fc6a8f8f37d9a7a1bc2fc76dd54 The package eslint-config-stitch was found to contain malicious code. Source: ghsa-malware...
Malicious code in react-responsive-carousel-v4 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 544d7ca19589218beb2b384a9e4e1ce7f64b130015ea62978f81adc7c6be5934 The package react-responsive-carousel-v4 was found to contain malicious code. Source: ghsa-malware...
Malicious code in l2-contracts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb0d21ff2e4e02ef879ddbcc41ef5c3d957ef37495bb5815beb17335f6579acc The package l2-contracts was found to contain malicious code. Source: ghsa-malware 8d05d077850c263135146bdb5b17ae9606f3f4fcd7eff921214f6ed00118cc4e A...
Malicious code in baileys-ud (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 96b217909f6ff7245dc6c345a2fb1b9e89640f01e2cdfdac9f86f8bf8b49f931 The package baileys-ud was found to contain malicious code. Source: ghsa-malware 941595a7bc00d7f510f4d184dad3886b4468cef70dceb1427944efbfecdef7c7 Any...
Malicious code in vite-ui-components (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5dde7d42b0bc5236d827ba62c883fbf14b643e368ef8a4b0f7b5430a35183254 The package vite-ui-components was found to contain malicious code. Source: ghsa-malware...
Malicious code in ansi-universal-ui (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ffa5e839c2761f91f4d422c6c89799495ba4a3171731ecac75e00647bbf95904 The package ansi-universal-ui was found to contain malicious code. Source: ghsa-malware...
Malicious code in atg-atgse (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a4a895bff954a7aac56b4897d5f8582caded83251256152d5f9b7d55a53eedca The package atg-atgse was found to contain malicious code. Source: ghsa-malware c7041c7bfbb06e2e710b58e8aeff432e4774d756db057975426c046c7ea06339 Any...
Malicious code in cat-admin-tool (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 34286533490c9ad41743b1eea6659d9c4fd3e62d1a830658b90840f3c49a6c8c Obfuscated code is used to hide exfiltration of basic data hostname, etc.. --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but...
Malicious code in chia-pool-reference (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 51f7e4eb8c8b82bd7c7514255d0eb51dddc657c4b06845232ad8490a514a139c Obfuscated code is used to hide exfiltration of basic data hostname, etc.. --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but...
Malicious code in zabitog (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 23d4c7f55266f10f23ddf4a743bb4222b920c0e7f4472c1572a51831a3d1f247 Obfuscated code is used to hide exfiltration of basic data hostname, etc.. --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but...
Malicious code in tableapy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7adeff5bc226723e8e3241a36596e3e99094553770deda5e89ac8caf7c0e0f01 Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...