Lucene search

K
osvGoogleOSV:MAL-2023-2456
HistoryFeb 09, 2023 - 7:09 p.m.

Malicious code in yfinanec (PyPI)

2023-02-0919:09:11
Google
osv.dev
5
malicious packages
pypi
local browsers
malicious extensions

AI Score

6.9

Confidence

Low


-= Per source details. Do not edit below this line.=-

Source: checkmarx (d81489f6e919c12171b1655da889187a032f7ef27746fdfc6dda5c9b811e994b)

Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet addresses

AI Score

6.9

Confidence

Low