2 matches found
MAL-2026-603 Malicious code in mcp-pdftool-plus (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2e92dea8be02288f271dacad2cd77f1bdd54596da1691cb738c4a7b7b4f77d21 When using the library, the hidden code starts a reverse shell --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign...
Malicious code in feature-gen-dt (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 1cb1501cf9b4d2f4476c326f065fbadb057653b09f479cdd836bee84dce76ee1 While described as telemetry, importing the package attempts to send out some basic info as well as quite sensitive environmental variables. --- Category:...