3 matches found
Malicious code in loadcoremwassistant (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 20499474b0d0eb5a02bdd34aba8dbd438993b87506fb7a9bd88a62a729736221 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in pypiele (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx ee88c93851e948d712a89564bfc344ce19843d9b5ed8fcd696d5d530fdc59e34 Malicious packages campaign targeting developers, payload is hidden using Steganography, exfiltrate host information...
Malicious Package
loadyaml is a malicious package. The package exfiltrates IP, IP-based geolocation, home directory name, and local username through a preinstall script during installation...