Malicious code in sketch-measure (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c54126529b9da791496e58ec744f6b7fe4fe769258480802eb5a3dcbc017d0d8 The package sketch-measure was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in jquery-display (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0873d8250c8747e1115c2866076509122f7e9ea8f4dde4dca4920d0f31f4874 The package jquery-display was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in dc-web-app (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3b4a9ee6e67e1a649fe34c92b180cb1de89af4ac592d918fd7806dcc7aeccb53 The package dc-web-app was found to contain malicious code. Source: ghsa-malware eb1d0c37e10d0f166990673f475cf3b1686c9f8b8ffd25199d48e3ddc45edb85 Any...

Malicious code in naughty-package (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f541502f67ae3fc0e3558f52fb3e24b3857ab7bae8d0f8b45dc077d4d06ea0f7 The package naughty-package was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in jwrincident (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ad20c4d6c73e649f0907879ef431132bb1566c890b55d8c5933abc09e10085fd During installation, the package starts a reverse shell --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...

Malicious code in myproject-bola (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f85bf2df7a8a311b7140ca4086746ecf3c26b219843b96c1f9f8c22f505e7edc Starting the module initiates an infostealer with a Telegram bot and RAT-like functionality and hardcoded credentials. The code automatically adds itself to...

Malicious code in isb (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 93750cbddba7897fde1d31836971e11082ad2076012c7caf708980de45827840 Starting the module initiates an infostealer with a Telegram bot and RAT-like functionality and hardcoded credentials. The code automatically adds itself to...

Malicious code in randomstringgen (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 9fc95ea566ad1938f7f75123eee2d8b3365bf55f06d7aa8a5f569f5e4c696132 Using the provided function results in exfiltrating the current running file likely the user's script to the hardcoded location. --- Category: MALICIOUS - The...

Malicious code in bladebit (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f415139e8d21831bbadeb09351ae32306980ae4de3692fc6cafc1d72c2b99e28 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in bps-design-system (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1f41e4d6abfba5f03e914140b0b171314ef8a614e3e03ff9685325532260a745 The package bps-design-system was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in tchap-bot (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ca239020bc35efc249b5f387dc3ae473132184319b88a498ba3f7ddd9dd6dfe3 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in ctf-toolkit (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e47981485066b674150cc4d9d3709e41707e69111f188e54e772becc7349ab89 The package states to contain a modified curl library to allow low-level request modifications. However, there is also undisclosed malicious behavior: 1. The...

Malicious code in socketxio (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 0ebdf2a14543a49aa2f1b1fdeb5a713a43da8326a370249ca370d9023283fb31 Using the provided function results in exfiltrating Discord tokens to a hardcoded location --- Category: MALICIOUS - The campaign has clearly malicious intent,...

Malicious code in dc-mobx (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df9e2dd1e6518d1399b40b444e58b1df6e1b73c5b7537390ba5950221b7835c0 The package dc-mobx was found to contain malicious code. Source: ghsa-malware 7ed4c54f4caa51eaa254af92038fe2e076f7dbe16e0067d481d9aa89925e3ec4 Any...

Malicious code in cdf-clients (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 b42b01e54e7410b51742faa0cb35fe74a73333f619cd8634b5491d3b32418732 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in marionette-react-view (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cbf2cb3282bede4d5ddc03ed4c435fefa92ad5b6b18f51f7d7980578ec3bcf60 The package marionette-react-view was found to contain malicious code. Source: ghsa-malware...

Malicious code in hashtools32 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 689514b83cd6496b0a4213d26325e73cd2c4f0e19128b969d19797bcdd4b131d During import, the package attempts to exfiltrate sensitive Telegram session files --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

Malicious code in @dgxeon/libsignal-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 431d9b11b162e92f20bd17a9dfcc9f722baf4fb83f1d813d4f5ab29c590f837f The package @dgxeon/libsignal-node was found to contain malicious code. Source: ghsa-malware...

Malicious code in socket-dgxeon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b6b1cdce1957669bd7cca7bb7c90b018a87fad6ed9ea49b4874f127272f0c00d The package socket-dgxeon was found to contain malicious code. Source: ghsa-malware 0f36366d3dd38134f3c8176992483c8c67f2e502ca9b774a4ea5a3fc2d428efc...

Malicious code in dgxeon-soket2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 833766a284022eb1ea516ee081a4cec3c5153b1bbec222238d7e676876acf10c The package dgxeon-soket2 was found to contain malicious code. Source: ghsa-malware d7bc58675189e4ecaf6f63610f5f5a05aebb80d0f3cb8bd1247fc9876a7bd13b...

Malicious code in dgxeon-soket3 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4804daec11623ef53c11da649a8621bd07ecb9009851a230b31d0c19adbef142 The package dgxeon-soket3 was found to contain malicious code. Source: ghsa-malware e6e291783a21c3b17598b212cf3376e3ea329d11ddea7783d88a5b6031f03304...

Malicious code in dgxeon-soket (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3bc1fe5368b07366735c8e9f8163262c8e77e1be50c66c9158459b89cf348cac The package dgxeon-soket was found to contain malicious code. Source: ghsa-malware 7814fe539784c04cc6450ee43c3902eab63d439030fa47b7678ccb32e8655119 A...

Malicious code in baileys-xeonbot (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 554f2736e3c931c65218b4df4b91cd05bb9bf6610e37df4f6b6c5347a082ee77 The package baileys-xeonbot was found to contain malicious code. Source: ghsa-malware 017e38e03ad0a83be1b7915ff690f658f8de47e19149f6f3765479a0a07b218...

Malicious code in dgxeon-soket4 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c38e017a1a49fe2e8fa61441a0f35d77a1b7052475fffefecca2fa4248a54c58 The package dgxeon-soket4 was found to contain malicious code. Source: ghsa-malware 1efad9e444be88f0b8912153564d4feb2b0dff3063ec3bb5f0750731faec1057...

Malicious code in sokettry (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fac50f59f66c4ffc9549baba61f562df6aef0920c46e97558d4a779d71d57c19 The package sokettry was found to contain malicious code. Source: ghsa-malware c2bfdd42a184b2800805e5560a0133b4582704439a23bdc8e613bb03eceb263f Any...

Malicious code in @skyzopedia/baileys-mod (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 027588d92a2ed6ba301f546a8688200af1fbcca8cef1dbe2b8ef1061b414c110 The package @skyzopedia/baileys-mod was found to contain malicious code. Source: ghsa-malware...

Malicious code in @skyzopedia/baileys-pro (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e18d9edfd38013956ad5cb33113c6fabf0249e92b69ba1161f98f8610485cfd The package @skyzopedia/baileys-pro was found to contain malicious code. Source: ghsa-malware...

Malicious code in @skyzopedia/brat (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7928fe6b128de0686bbc2619dd9015f58d8f2a38d50911f33d8886b323c6df5 The package @skyzopedia/brat was found to contain malicious code. Source: ghsa-malware 0eb0067d76f7f026901f7d29398dd55485b8fa6a59af7bdbfbdb40d6f97b7e...

Malicious code in @skyzopedia/baileys (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2374557a2e5bb837db215803d8633eccba2c9eb2ba8ad4ad709f7e93246e117b The package @skyzopedia/baileys was found to contain malicious code. Source: ghsa-malware...

Malicious code in @skyzopedia/libsignal-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d2851df7c45fca156556e4b7c5fef4c60ed254a43c4e6e51c6e02d8b5ca5a20 The package @skyzopedia/libsignal-node was found to contain malicious code. Source: ghsa-malware...

Malicious code in @skyzopedia/ubot (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb7b890828aacf5b41748819446c1c5d9627b47ea308e06e68ac2b8c3da1b064 The package @skyzopedia/ubot was found to contain malicious code. Source: ghsa-malware f5c54f0d0ad14b598ab988dc3b30f210453e0c0a4e4c6dc9e7fdc98ab95fb7...

Malicious code in libsignal-skyzopedia (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b81533378b0d096fcc0993f0ed9354dab8557c619e4a872c6a01c4df07aeedaf The package libsignal-skyzopedia was found to contain malicious code. Source: ghsa-malware...

Malicious code in cicd-ppe-redteam-test02 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 14adb6733ca8f958770b9766a7f255fbd8562886dce3b42cee772eac50e52d0f Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in cicd-ppe-redteam-test01 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5ff0b643e9e96817244b6499fdbcfd26b6c26cf366980909a6461e4c15b389fd Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in @zinley/orion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cb5209e6394eac2659ab3101809c2a59bf59a604346075a9d923de21d982812e The package @zinley/orion was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in newman-reporter-genuinepoc (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c9c199e603c75858879d1b49354696a66128d31c3160e22c6c2b105e146235fd The package newman-reporter-genuinepoc was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in express-core-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f4917c569276f08ce3f25d5426d0621945c0664c14badaff37739cde37fba05b The package express-core-validator was found to contain malicious code. Source: ghsa-malware...

Malicious code in nuget-task-common (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 711e93cd10681dc29d8c8eea7b459d982383f7b78d0c5fdc73e9398aff953a90 The package nuget-task-common was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in foundry-toolkit (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3762da1ba2c85b0e0210a98196cefcf7914ab00712944886cb47409656409ac6 The package foundry-toolkit was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in launch-darkly-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b23f579bd6a28b963c5574bfb9148b80de6e59d96c6cb0d10f4d2a35d4c010ac The package launch-darkly-js was found to contain malicious code. Source: ghsa-malware e7a7ecd2770ab8b028a7d1fc05847c7049e1f276886eafb32222fcb81b1d79...

Malicious code in windowston (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5a6a92aff7b9a6be04f3050f1895e2d53e77dd8c9eba110c970ab59c7d003d81 The package windowston was found to contain malicious code. Source: ghsa-malware 87bbab5dffef9e8b05cc36129ad2ac67f2c980f4b85ee393b0f23ee8fa15fd85 Any...

Malicious code in flycord (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 b2071af47a4b327550f5614253b291b893e0741e6f2ebe3b4378a4794696d211 When the user uses the provided library, this package silently reports basic information and the result of the user's action to a hardcoded, obfuscated URL...

Malicious code in edx-salesforce (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c4ffac16b09d8312b28d4f65cd3d0f49ecccca9de9d7bbdac0aed694b28949b7 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in jslint-config (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11f2fdea43a54f2aac247e06fcc46c506979a5b1ccb5d178077662e61f747b74 The package jslint-config was found to contain malicious code. Source: ghsa-malware bddd0b74c730da3b118b7ef92befbc93b4b1379cc23ce7535e843151a84ae957...

Malicious code in hardhat-node (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 64850c9938e9fa6cb3e89f001306cc9906dd810b24573bd990d1cafc92893df2 The package hardhat-node was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in zoddle (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b21aded7bb690c93924ac4c0458ab189fbe6e878112364281ff687473453a5e0 The package zoddle was found to contain malicious code. Source: ghsa-malware 966916af3c9fb77f02c18f21ab03d721694167ce47d97754503ef7dc604a844d Any...

Malicious code in jest-param-validator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92f5050070ee0637ff34403bfa22fe7464561a421a99410e084c74e1bd023b08 The package jest-param-validator was found to contain malicious code. Source: ghsa-malware...

Malicious code in ts-packer (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bd7ed1f89788c69596bac0f4e3429cfadc252f8f2e7cc255616c6f63ad63d2eb The package ts-packer was found to contain malicious code. Source: ghsa-malware cf93507187d36aaad21ab48b27cbc91258ef6b442053c36ee60cc01adbe7e8b4 Any...

Malicious code in jest-node-paramset (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0195409dba352b70324fae3226921105e7658404675e2b9e8ab1e898c5bd84fa The package jest-node-paramset was found to contain malicious code. Source: ghsa-malware...

Malicious code in corstoken (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a0d343f604565676254c8b24e997c84396038593cf5259c15d044ec3c5ab3350 The package corstoken was found to contain malicious code. Source: ghsa-malware d7d7cc0fd416fdcbdfe3517bbfd1ffec7e67ce88349fb17ddd2b22e408f740ed Any...