Malicious code in @ownbackup/ob-loader (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 687afc025587f4d90747fd2ebf5cfe350f93f2abc39393f85d07fa96c69161e3 The package @ownbackup/ob-loader was found to contain malicious code...

Malicious code in @ownbackup/ob-query-builder (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8e883403626d57ea766a1c9e33634ceb5558b9293ef87e9fb60ffa6d052e2454 The package @ownbackup/ob-query-builder was found to contain malicious code...

Malicious code in @ownbackup/ob-design-system (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d527134cefe7b59fd4bcf414a5c9540c9dd5cf9285ad5f61b7d04877f15daa54 The package @ownbackup/ob-design-system was found to contain malicious code...

Malicious code in @ownbackup/icons (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c792960e05f18ba855e8f28d02adbcf83b9dae5ccddfd6558ec016f280cb6bee The package @ownbackup/icons was found to contain malicious code...

Malicious code in @ownbackup/data-chart (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2f3acf1c89fb017fc30245400cef31895f729d2be6f8bd843c98a43eede73062 The package @ownbackup/data-chart was found to contain malicious code...

Malicious code in @ownbackup/data-grid (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e06701bedce8bca7999d26a14d75dbdaa968b8b68f00e50cd13cb6562fe70e05 The package @ownbackup/data-grid was found to contain malicious code...

Malicious code in @ads-core/types (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c87d0a891128398685bb290e3aeec3ffa92b924ed73e196f11216f332a5ba071 The package @ads-core/types was found to contain malicious code...

Malicious code in @vienna_cancer_center_portal/js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a76d15de3b0c984f8b9b8795e5bacb7604de14c2808edf0b4bd7f280c5d82db9 The package @viennacancercenterportal/js was found to contain malicious code. Source: ghsa-malware...

Malicious code in ivx-cloud-client-v1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6d1fbfc03c64d280029c66ce70086ae89a6300a262c85cf73a4f3a55357ee56d The package ivx-cloud-client-v1 was found to contain malicious code...

Malicious code in ro-mobile (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ba9c94a8695242e09289eca1f734da5c96b789f911e1e1cbc6a7279486dfb36d The package ro-mobile was found to contain malicious code. Source: ghsa-malware 9720efd6aba66e7a6a07c30debc177402cf521360448144f8804370656d64b88 Any...

Malicious code in dc-extras (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebfb103084f405558fdf917f0a86459bab97acfba22382d7f24afdb54d9964bc The package dc-extras was found to contain malicious code. Source: ghsa-malware 39af403fc6b31b58318c30ecab3f3348a044fd0a6d7918d7f355921c639f85aa Any...

Malicious code in airslate-dep-webpack (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 91777938469aa47ed3a4eb51c82af2752f2dd57b232978a88bfacdd3b82b1fe1 The package airslate-dep-webpack was found to contain malicious code...

Malicious code in mw-frontend-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9706fc1838aa618d5cc4b64d3b1ce78e464ba761a9762bf1c3a39cdc44fda577 The package mw-frontend-utils was found to contain malicious code. Source: ghsa-malware...

Malicious code in mui-wrapper-core (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 990f5534f23c3e77faec1b92be83c7827d3136d03abcfefd245b8fa4f987bd52 The package mui-wrapper-core was found to contain malicious code. Source: ghsa-malware ba2ba20b7b8b4a7fae1afa52854fe8be2f326067033269e32445cd20cbad44...

Malicious code in cloudy-uvi-sense-v11 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ff56869fcef2b46c119633fc140a8c99af63e3e4a7e05c5e75f3fc64213dbeb2 The package cloudy-uvi-sense-v11 was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in smtrlib (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 2c1075f7c4373ccaac9936bfd75a22a27f0c9ba06a5402a68a45fe8121f58783 Malicious copy of a standard library module that during class initialization downloads and executes remote code and after that attempts to cover its tracks by...

Malicious code in unizip (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 36d788bf5be2a646474da2cb929d2b24c328cd5bbd997697780a15da181d1053 During initialization of the archive-support class, the package download and executes remote malicious code --- Category: MALICIOUS - The campaign has clearly...

Malicious code in utif-updated (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 24ed42240868e0b6b0eff870ffa0f42d95bca3659f922078257f1a71694da3f1 The package utif-updated was found to contain malicious code. Source: ghsa-malware 3d854467203e61d8d828eafa2a699ba639c90e4045f0e92f033fdade35096cac A...

Malicious code in tiny-model-update (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2a69a5156f95b3b1ddd3a9c0ddd7e1fad0cdd92841e56dc6ea7b950a35a5eb34 The package tiny-model-update was found to contain malicious code. Source: ghsa-malware...

Malicious code in commander-stable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 65fe1eb016adcd74c343cd1628168fca4112c383c79d2e8580aa81b80a3d162f The package commander-stable was found to contain malicious code. Source: ghsa-malware d960435ff1d49dae38d3390836ed2ea98d8952b423ab906c750127f7c6bc02...

Malicious code in secguest-lib (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ae83c0c9ae4ffab006e7b6d1833b54dfb5386dedf3e94dedf500b3af1dc82d1c The package secguest-lib was found to contain malicious code. Source: ghsa-malware 62ef36b4b0912fdc42b94702acf5c8e48b06cb2d3370113c3c875479aacd5e9f A...

Malicious code in github-badge-bot (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8f427bc7bcd3bfb173311bffdab461e2c6fc5350dc9ab3f7dc5e9a4ef6d16728 The package github-badge-bot was found to contain malicious code. Source: ghsa-malware f87cd6af8d38dd37db1b6aca4f637451fe3303fa73ed0705216e3711bc4d01...

Malicious code in hooktest-fin (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 87e6fba5c0ac4b5359cb360a5dbf68404d0b8559bd94a9f4c33fdad09559b241 During installation, a script to execute remote commands through a Discord bot is installed, ensuring its persistence over reboots --- Category: MALICIOUS - Th...

Malicious code in runtimeutils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4d312906cc585fcd02b2ac0b52bb04a23b0294532e3625c7f5e27bf1e4b51e4a Importing the module, downloads and starts a malicious executable identified as infostealer. Based on Telegram links, this is related to the 2025-12-synium...

Malicious code in colorfulpacket (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 46d838ba056cc96b43fd6a859a9d351ffda2aee0cdcd2b47ea13f3f38b31d038 Importing the module downloads and executes malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...

Malicious code in meta-code-verify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dfe9ef66b25262f4d7762d8eb0da5f1eb463ee0dce0e8c8a381afafafc7ac364 The package meta-code-verify was found to contain malicious code. Source: ghsa-malware 20e17f2a738903ebfbb0686c72b499a7788fb35d071f3a6d2abf01b71204cb...

Malicious code in ai-cypher (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 5484d32cf20d26ce1585cb1cf90d2ed28c9cf9ccdcf038976a5cec33dd939e4d The compiled native extension hides the code that during import exfiltrates sensitive Telegram files. --- Category: MALICIOUS - The campaign has clearly...

Malicious code in @nosinovacao/nosid-mfe-common (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5f49ca2c72725bef26372372dfae65145d32d2d69179865156de7a930c88853d The package @nosinovacao/nosid-mfe-common was found to contain malicious code. Source: ghsa-malware...

Malicious code in othw (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f6aa8994c57ee31c123cc2e817e82c8bd399d9b3448023298e1dc6b5c8e04494 The package othw was found to contain malicious code. Source: ossf-package-analysis 1b703e37491c7489a512923ceefa27880a0555859eaa98605b6a6fed4637f159...

Malicious code in escaux-scrumboard-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b2d3a9c35af8fd074327c2b67262963aa30c1d92abbee4132456ef354f51140e The package escaux-scrumboard-api was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in jest-stable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d02daf523039c3df603f4e65bf270eab31b72c3d891d9be87a53c99c77950bfa The package jest-stable was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in system-health-check-test-unique (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 10bfd6e986187675dd7d7e3a8f860807e408fd6a91694ca0e0128be83fa8fc47 Importing the module exfiltrates content of /var/www/html to a remote host --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

Malicious code in shakti20261 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a217c3c91ff80edbc760c82358d7d22c5819f0110ccf221e4d3639eb22e08ac7 The package shakti20261 was found to contain malicious code. Source: ghsa-malware e75357912e9e470657d646a2fd23a82c2f23cd2a6d0a987fb5b880eb8fa4c731 An...

Malicious code in nmapchecker (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9a2e9806d703aa01275f36875831f11a74f4cd9fa31d137266c701d31c020cc8 The package nmapchecker was found to contain malicious code. Source: ghsa-malware 97029c7fd0c4fb27938f819eb6d304c50fc79713c302f835f595fe8c4d91c860 An...

Malicious code in adel-xnetgpt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f85b321aa51079c32d9640eb5619d6350f409dc14f26141a99a5744932ddee14 The package adel-xnetgpt was found to contain malicious code. Source: ghsa-malware 0ebdfb3056af9b8e58d8ce4bc938a77b985744ece2a3de14f4b691d2b97ca3ad A...

Malicious code in ddos-gacor-v2 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 32622783fe9401d4c567f638a03e43b4559383e7f853ff0457f7f301420f95e9 The package ddos-gacor-v2 was found to contain malicious code. Source: ghsa-malware 3192709ec1aa7bcf745ab018eb8d6a537ace33453acda64299ef30193f8d64a9...

Malicious code in wifi-killer-xnet (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc233a0f06c7d7ecc69b5b2166295c9e8b63c8c05198355f8f80295907125e17 The package wifi-killer-xnet was found to contain malicious code. Source: ghsa-malware 98f1d50e89f69d69cfae05f464ddc4db1ea8e83fb48168cad1f75c87d4705a...

Malicious code in spamsms (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03cf698aa8fd11ac3d871633f3a2115632a110296a8965f5857a8fd8835a67a6 The package spamsms was found to contain malicious code. Source: ghsa-malware 0ee3e4d2eb02c7d8a5cb8bc15304efb396753ec2e1cecfc5c4b1b01b469930af Any...

Malicious code in zebracros-bahlil (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cd1584c60176e7489fa7d40f80dd373fc228d0cb39052fb1e6b5e638f955d229 The package zebracros-bahlil was found to contain malicious code. Source: ghsa-malware c31864656b362790c68a366d8374f2f6ab6b6d8ddf9c04f49cca4eceee2a9e...

Malicious code in sonia3-npm-js (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 339534853ebcb623a903a0515ab9ae854edaac8fdfec58d3edb454c501238d19 The package sonia3-npm-js was found to contain malicious code. Source: ghsa-malware 3b951ad6a6c46f78a032c0c93db496b6b13cfadccf178f195cd6c3f28531ed1e...

Malicious code in adeliana-xnetgpt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3f83c4bf47eb41e57e89cb19f6d28796be0fbc39ff598db3ae6f04d87500fb7a The package adeliana-xnetgpt was found to contain malicious code. Source: ghsa-malware 780aa557a66927e031b481d2f7add1e807605370d094563885c82f533a7ab7...

Malicious code in xnetgpt (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8cec426261ce30ea326ac55c56aaaf04c8efc5dad86f9eecaf8a8397df70dec7 The package xnetgpt was found to contain malicious code. Source: ghsa-malware 168c69e604f23926993c52e06b6a5f4b5355d3dd935261e5aba8c5d761bb17e1 Any...

Malicious code in xnetgpt-lite (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 71954a410f80b8f6624ea3f25761c2590f558b97a000cf4e48413856e28516db The package xnetgpt-lite was found to contain malicious code. Source: ghsa-malware 667f6919693429b64e5a65f3b4d5f350ab3af5d1abedc44b073110b3b7f65344 A...

Malicious code in @sodexo-connect/sap-cdc-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c4e047fc494b2206648c16c1e980cbf3aed51b9c27a8a9287cabfa869aab9095 The package @sodexo-connect/sap-cdc-client was found to contain malicious code. Source: ghsa-malware...

Malicious code in xmlwtf3 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fdc397291400d5d396c50c42966b6c482fb92a577a17ad2440c2ab4c7f0619e6 The package xmlwtf3 was found to contain malicious code. Source: ghsa-malware f1aef41363b46dac1d30ba3bd916904df95fce8278f6b3abed14f7b48002d2c8 Any...

Malicious code in asdfgh33 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 59190dcd898218c2925fdb51e3fe1090cb928c4bd0de218b403c0f25469ff083 The package asdfgh33 was found to contain malicious code. Source: ghsa-malware 15c01c114a3291d28b718c3328ddd213e72bb0ee0976ef40070061e41f1c3e3f Any...

Malicious code in ahmed_salem_o (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5ccf3722bcf6828ca9cc9ed0f332cb3778d8a8be73146f96edb1d381a4649f54 The package ahmedsalemo was found to contain malicious code. Source: ghsa-malware dcde03f9a78b367c9044b92cfac2900e588491df6c7894a65c4b2658e26c7e65 An...

Malicious code in ctfvamp (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60afd58ec7b3c88e49140c847bac2c30a9e0e6d9f4f700125d59a3302bb9dac2 The package ctfvamp was found to contain malicious code. Source: ghsa-malware 813e410e18d7609781e8b8a67e5750a2e2652e69245b8a6d343d9ea8364d75a6 Any...

Malicious code in ctfvampir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b7326c736b63690c5699af7e755bf0f5fa0663dcfc80c27ae252c7f8b9d57c47 The package ctfvampir was found to contain malicious code. Source: ghsa-malware 20527b160a7dde628dd4ce3ca417fd8a0977612133c8b1a443cdbe9496efb604 Any...

Malicious code in baidu-tester (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 421c0014ea5fca29effc2b5cc0a04d984b9c2d557496c3ae31a5724ab6337417 The package baidu-tester was found to contain malicious code. Source: ghsa-malware e3d13abe3b7037aa5d2906857e05ea0f19837a22cf3563951cf23717228d15b2 A...