10272 matches found
Malicious PyPI Packages Exploit Instagram and TikTok APIs to Validate User Accounts
Cybersecurity researchers have uncovered malicious packages uploaded to the Python Package Index PyPI repository that act as checker tools to validate stolen email addresses against TikTok and Instagram APIs. All three packages are no longer available on PyPI. The names of the Python packages are...
MAL-2025-5094 Malicious code in ai-labs-snippets-sdk (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2d5d4e1e66d1a84969c7af5822efb6e894abc0d263c87f583bf45591d216b85a During the importing, it loads a file pretending to an AI model. This file contains pickle-serialized code that exfiltrates data basic IP/username info, as wel...
MAL-2025-5096 Malicious code in aliyun-ai-labs-snippets-sdk (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 459b9313aa2d453392e97f619a0ffb2898c3b90700e72dcb2cde4d1a1b97b1ac During the importing, it loads a file pretending to an AI model. This file contains pickle-serialized code that exfiltrates data basic IP/username info, as wel...
MAL-2025-5105 Malicious code in coloramapkgsw (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d3b0703e237935a2a53d99b6e3ad717e1e604c218e5e21c97773615373adea16 Importing the module starts download and running a remote executable, identified as malware by AVs --- Category: MALICIOUS - The campaign has clearly malicious...
MAL-2025-5106 Malicious code in coloramashowtemp (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 68b62d3c6ab90e6f581e390f03610916462b830f303532bd5528e2d5c37bb46e Importing the module starts download and running a remote executable, identified as malware by AVs --- Category: MALICIOUS - The campaign has clearly malicious...
MAL-2025-5103 Malicious code in coloramapkgs (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c7f00bfa67a0d8743c0d46766e677dce5d28db461505c662fcb8cd9efc4b2417 Importing the module starts download and running a remote executable, identified as malware by AVs --- Category: MALICIOUS - The campaign has clearly malicious...
MAL-2025-5118 Malicious code in m5tlnyakblwa (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a3cc4be569e877aa213b4747e6285f9d2d46f68ee93d55ec9fddf7949c15ff94 Importing the module starts download and running a remote executable, identified as malware by AVs --- Category: MALICIOUS - The campaign has clearly malicious...
MAL-2025-5104 Malicious code in coloramapkgsdow (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2c07b8b1a8058a35f094f6baa72e55bca26bfb3b8bbbde78689ddf0373f698cc Importing the module starts download and running a remote executable, identified as malware by AVs --- Category: MALICIOUS - The campaign has clearly malicious...
MAL-2025-5133 Malicious code in sol-prices (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3d95d5a12e7c7a9753ed8a1612ade65f2e5775940dec3eadaefb47ec670bfc1d Code exfiltrates the current python code and/or IPythonshell history --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
MAL-2025-5110 Malicious code in dexscreener-charts (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 46bedd3ee92a24c08ca1ab124f058e6b240b43c4cc9431ceccc8b2c050437b5e Code exfiltrates the current python code and/or IPythonshell history --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
MAL-2025-5138 Malicious code in solana-live (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 edea0605b97d331d0da7af79c24a8875042687bf06aed9192f7cded40da09012 Code exfiltrates the current python code and/or IPythonshell history --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
MAL-2025-5119 Malicious code in myownpyfiglet (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 feb59db3efc9397070b6fcdf08762e0defb77d34e5ababf463e3c1a7a1f5b927 Malicious clone of pyfiglet. Importing the package starts a series of downloading and executing of obfuscated malicious scripts, partially identified by AVs. -...
MAL-2025-5127 Malicious code in requestpackat (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 b70e437edd04a30f48e384a4a07cdb1790dcb5e6a66ba800dc1703bf845a6b36 Code download and runs an executable, which is widely recognized as malware. The system is also configured to run it on startup, and the file is saved in paths...
MAL-2025-5112 Malicious code in discorddox (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 52f656f62a0fe1e90282cf7e8004bfd78e69a854e5e7a9c33ef72b7e5b43b831 The package contains an embedded malicious executable probably blank grabber started when running the module. Probably continuation of 2025-05-pydoxing ---...
Malicious code in dial-xl (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 129b71dc44955e560cd56ff53e0be19aced751699016fa96cb04ee75d2e76e3b Packages that seem to be created by a legit bug bounty hunter. Designed to look like created by different organisations, they contain a couple of data...
MAL-2025-3741 Malicious code in dial-xl (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 129b71dc44955e560cd56ff53e0be19aced751699016fa96cb04ee75d2e76e3b Packages that seem to be created by a legit bug bounty hunter. Designed to look like created by different organisations, they contain a couple of data...
MAL-2025-3744 Malicious code in program-admin (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 79810d0cd56c8a3266dcbe5827dd3d27eb976b353c7b17940a29dddc602df4f7 Packages that seem to be created by a legit bug bounty hunter. Designed to look like created by different organisations, they contain a couple of data...
MAL-2025-3743 Malicious code in iconnect (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 e53aae69656f138607d0de8abe11d4b48ed6156875f07ec0da7485dd776f7158 Packages that seem to be created by a legit bug bounty hunter. Designed to look like created by different organisations, they contain a couple of data...
MAL-2025-3742 Malicious code in document-inference (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 0519099776ddb5cbd1778fa5f043a1cad34d94d5116ae895120aba38608e7eb0 Packages that seem to be created by a legit bug bounty hunter. Designed to look like created by different organisations, they contain a couple of data...
MAL-2025-6524 Malicious code in initer (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d2aac1e40660cbe4323a93d03087f3b9a2d596a5dcfcf2bae3cb0a2ab37cf646 File is designed to download, hide under system-like name, and run a remote executable, widely identified as malicious. --- Category: MALICIOUS - The campaign...