Lucene search

K

GoogleOSV:MAL-2023-8591

HistoryMay 13, 2023 - 12:00 a.m.

Malicious code in pywool (PyPI)

2023-05-1300:00:00

Google

osv.dev

5

malicious packages

campaign

developers

steganography

exfiltrate

host information

pywool

pypi

AI Score

7.2

Confidence

Low

-= Per source details. Do not edit below this line.=-

Source: checkmarx (1ba602a97accda8e614fcf38d1af1cb7f1878bf2bd450b21f1be16a4c260123a)

Malicious packages campaign targeting developers, payload is hidden using Steganography, exfiltrate host information

References

checkmarx.com/blog/attacker-hidden-in-plain-sight-for-nearly-six-months-targeting-python-developers/

github.com/DataDog/malicious-software-packages-dataset

medium.com/checkmarx-security/attacker-hidden-in-plain-sight-for-nearly-six-months-targeting-python-developers-3712f0f107e0

security.snyk.io/vuln/SNYK-PYTHON-PYWOOL-6069622

AI Score

7.2

Confidence

Low