Lucene search

K
osvGoogleOSV:MAL-2023-2077
HistoryFeb 10, 2023 - 5:33 p.m.

Malicious code in pyinstalller (PyPI)

2023-02-1017:33:04
Google
osv.dev
4
pypi
malicious packages
browsers
clipboard manipulation
crypto wallets

AI Score

6.9

Confidence

Low


-= Per source details. Do not edit below this line.=-

Source: checkmarx (09f3d96d811968a9c52d998cf95fdc35cf36728f53d437e07e0b977f3beec9ea)

Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet addresses

AI Score

6.9

Confidence

Low