2036 matches found
MAL-2026-818 Malicious code in thecorrectjames (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 53ae167216303d3e0d2eda2b5321b60fc5bf9431e16ae0caa507123ba45661a1 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in grokwrapper (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a7ae896464be7f195243e35231a2435d0a1eb055cc7fa8cfaef707c7e11c55b2 During importing the module, package silently execute code hidden in an embedded config file, and downloads remote executable. It's then added to Run registry...
MAL-2026-804 Malicious code in breadcrumb-service (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46f4e9359f962e7c7082988e5a0af26520798dd321ecda643cb8d14268ec9c5b The package breadcrumb-service was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in breadcrumb-service (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 46f4e9359f962e7c7082988e5a0af26520798dd321ecda643cb8d14268ec9c5b The package breadcrumb-service was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in digital-checkout (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f3254d2b582a5e3da6587b8994dab665d74a70e88b0383d6dd0d5f96d82e7a33 The package digital-checkout was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-738 Malicious code in tablescene (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 75f24eaea6c977e93d35c431f9bedc66b7757fd5c5635425c28801dad3b50de9 Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...
Malicious code in tablescene (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 75f24eaea6c977e93d35c431f9bedc66b7757fd5c5635425c28801dad3b50de9 Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...
Malicious code in cicd-ppe-test (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c9f1bfe5b5514b9b3a1ffad43be1f06d22faf12f031d325a9e689340c2ab16a0 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2026-700 Malicious code in tabulapys (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f43be05d02e16c7d381e105a4eae9a2701039d29435e6d83cb982f607bda623d Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...
Malicious code in tableapys (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2aff2faef3705b6233a6df3d6b39f4f9b88ff522aa7c343cd8d36eb1a40405d6 Packages contain hidden code that is effectively run during importing or using the library, and downloads second stage code. Then, a process running in...
MAL-2026-649 Malicious code in callapirequests (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 6e7fadeb48347b57805dea2f58d0f662e43170e0e4439a424f6dec66cf285452 Importing the module downloads and starts remote executable identified as malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
MAL-2026-640 Malicious code in connections-api-request (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 cbd9a8004eda10de0059f97712efe95c76e4302c5da5ff83e7fe3bdd3abd381b Importing the module downloads and starts remote executable identified as malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
MAL-2026-615 Malicious code in teaser-nav (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebbd539070b3d1fb400c41280034565422204c7bf4047b965f596d56245c345e The package teaser-nav was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in teaser-nav (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ebbd539070b3d1fb400c41280034565422204c7bf4047b965f596d56245c345e The package teaser-nav was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-612 Malicious code in sharedclasses (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9d92097d15ef8e4712a31a9d8abdaecd9e1afa7d718078fda3457ed45ef6a1c6 The package sharedclasses was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-609 Malicious code in euskalplantxa (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa75d57475518e4ef5865992ffdf7b0137f3af90a6672bb44113312d6598fe5f The package euskalplantxa was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-608 Malicious code in ezviz-shop-mall (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e8fa924e1aabab970bfb7f4b014f4f210acc59d591128c45fb41c33e1e8f8c3 The package ezviz-shop-mall was found to contain malicious code. Source: ossf-package-analysis...
Malicious code in ezviz-shop-mall (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e8fa924e1aabab970bfb7f4b014f4f210acc59d591128c45fb41c33e1e8f8c3 The package ezviz-shop-mall was found to contain malicious code. Source: ossf-package-analysis...
MAL-2026-627 Malicious code in theanswre (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3a5007e2f06a55345366f95d0073e9980436e74745540a4e9b43c8a1836c4bef The OpenSSF Package Analysis project identified 'theanswre' @ 0.2.4 pypi as malicious. It is considered malicious because: - The package execute...
Malicious code in theanswre (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3a5007e2f06a55345366f95d0073e9980436e74745540a4e9b43c8a1836c4bef The OpenSSF Package Analysis project identified 'theanswre' @ 0.2.4 pypi as malicious. It is considered malicious because: - The package execute...