103 matches found
EUVD-2014-0044
Malware in sbrugna...
MAL-2025-6625 Malicious code in zlapp (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6572 Malicious code in pyrofork-dev (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6554 Malicious code in mytoolsfun (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6553 Malicious code in myfuntools (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6518 Malicious code in graphlibx (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6504 Malicious code in fastybird-triggers-module (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6466 Malicious code in bmlx-openapi-client (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6464 Malicious code in blackspammerbd-termux (PyPI)
--- -= Per source details. Do not edit below this line.=-...
PyPI Warns of Ongoing Phishing Campaign Using Fake Verification Emails and Lookalike Domain
The maintainers of the Python Package Index PyPI repository have issued a warning about an ongoing phishing attack that's targeting users in an attempt to redirect them to fake PyPI sites. The attack involves sending email messages bearing the subject line "PyPI Email verification" that are sent...
MAL-2025-6541 Malicious code in malimalo (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3b4acdcbd7f8ae1e20019b3c0126a4b5bac73cb07a6bc4c0c3a024bc2a390b34 The only goal of the package is to execute a webhook or a suspicious file during installation. Closely related to 2025-07-0x9xnx - created after previous...
MAL-2025-6529 Malicious code in jirawrapped (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 22cb10a2f4a514eac4296e09281b5b08784e62d6616a520e032e563d69a0e6e1 During installation, the package attempts to exfiltrate browser history --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
MAL-2025-6615 Malicious code in wallet-utils (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c83a3acdf0b02acc2a9af7cf885f2f744a154847edc66e1264ee1c38d8d7b984 Package silently exfiltrates the provided mnemonic --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...
MAL-2025-6545 Malicious code in managment (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 754c9b609bb8dafc0fd21d141cd216744d9f2aa1f23898990c52e872fdc23e1a Installing the package starts a revshell and download and starts a remote script depending on version, different malicious functionality. The name seems to...
MAL-2025-5134 Malicious code in solana-chart (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-5107 Malicious code in colorizator (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-6469 Malicious code in browser-history-analysis (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 032a326beadf36ce66d29555a7dacc90d6dfc733435dc61852cbc1e5128ee73d When starting the server with expected functionality with potentially sensitive content, the package silently sends the location external IP to a remote...
MAL-2025-4264 Malicious code in web3-checksums (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-4233 Malicious code in pystile (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-4234 Malicious code in python-coinbase (PyPI)
--- -= Per source details. Do not edit below this line.=-...