TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...
Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...
Hundreds of npm packages infected by the self-propagating, credential-stealing worm from TeamPCP are related to the open ...
ClickFix relies on tricking users into essentially hacking themselves by running commands that compromise their computers. In ...
Fake OpenAI Privacy Filter hit #1 on Hugging Face with 244,000 downloads, spreading infostealer malware to Windows users.
A new Shai-Hulud variant has infected multiple npm repositories and jumped to other widely used JavaScript and Python ...
Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...
A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...
The helper's sole function is to invoke the browser's IElevator2 COM interface, introduced in Chrome 144, to recover the ...
30th January 2026: We checked for new MRT codes. If you've ever watched Fast and the Furious or Initial D and wished that could be you then you'll want to checkout Midnight Racing Tokyo. The popular ...
A fake repo impersonating the OpenAI Privacy Filter model racked up 244,000 downloads in under 18 hours before Hugging Face ...
31st October 2025: We added new Gym League codes. Gym League is a Roblox game set in an outdoor gym at a beach. You’ll create your own character, train with a variety of machines and weights, and work ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results