26 matches found
CVE-2022-23530
GuardDog is a CLI tool to identify malicious PyPI packages. Versions prior to v0.1.8 are vulnerable to arbitrary file write when scanning a specially-crafted remote PyPI package. Extracting files using shutil.unpackarchive from a potentially malicious tarball without validating that the destinati...
EUVD-2022-0118
Malicious code in bioql PyPI...
GCP Cloud Composer Bug Let Attackers Elevate Access via Malicious PyPI Packages
Cybersecurity researchers have detailed a now-patched vulnerability in Google Cloud Platform GCP that could have enabled an attacker to elevate their privileges in the Cloud Composer workflow orchestration service that's based on Apache Airflow. "This vulnerability lets attackers with edit...
Malicious PyPI Packages Stole Cloud Tokens—Over 14,100 Downloads Before Removal
Cybersecurity researchers have warned of a malicious campaign targeting users of the Python Package Index PyPI repository with bogus libraries masquerading as "time" related utilities, but harboring hidden functionality to steal sensitive data such as cloud access tokens. Software supply chain...
MAL-2025-191673 Malicious code in acloud-clients (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 89813876cca364b0dffda624005d527aa3c9f54ea7ce20af8186faf8f374ba6f This campaign is built from two parts: 1 packages named like time-check-server, snapshot-photo contain an innocent-looking code that sends "date" to a remote...
Ultralytics AI Library Hacked via GitHub for Cryptomining
A supply chain attack on Ultralytics exploited GitHub Actions to inject malicious PyPI packages. Discover how it unfolded and the steps to mitigate the risk...
Malicious code in selfinfoponged (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 04ac261aa352ac2d7834c9f0783bec5a7f6936cd81ac4ffa923993351d85657d EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in tpcpustrvm (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx ed7d209b313dab73905d655785f2becd74e514e03223f0bd3b28ef31c8f4d5aa EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in selfosintultrahacked (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 951f89d7d7a5c48b21857870145304ef13cf3db9b84092363efe47c53669801a EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in esqvirtualedhacked (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 91ec4d22bffac200041114bf239954c193868af725114569667f808e929e0215 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in tpurlintel (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx cf62f533b6abff4a1d8d119fba1d218eba288e2c0c907b3635a2698a32cde3f5 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in tpmaskstudy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 9f9f631ca74517619233e9ab74f1bd3cae79b4c1800aee73901824a8bca7bb2b EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in edvisa (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx cafc0b08e335bb1c85de565c3ad5e6d4d80b3c4c672691d1e90f4ddc128e08fa EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in grandcv (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 5acdc351eff6f1de8c3a018dbfa8c633971969fe1ffc1f0a4e2041ef8b7f595f EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in loadmc (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 751c470a997d5046f3f87d364713c0c4d5689110e46bbf809af5e59acf256e2e EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...
Malicious code in beautifulsuop (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx df1ed5abeb9bc99da5bd07d1c2408f50915eb7cf6e632c80f3fa50bf8e4561c1 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in gitpytohn (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 6d3794294c17a3d907304fefedc5e2344bd1644ec1b20803ced3b4570aa2ae2a Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in progresssbar2 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx c8717c46a8c7ed539dd532435731048440726e9f5b308bf91854b9370630a463 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in lcick (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 9e25a9d33bda3ebfd71312605b236dd37d82a17657ff57c2054436b598312c7f Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...
Malicious code in sckiit-learn (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 79c07ccfd83d7d8c0c352db36acf707a169bfa113a8ccda7db9c383a58c3ceeb Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...