9169 matches found
EUVD-2026-1910
Malicious code in libc-dev PyPI...
CHASE: LLM Agents for Dissecting Malicious PyPI Packages
Modern software package registries like PyPI have become critical infrastructure for software development, but are increasingly exploited by threat actors distributing malicious packages with sophisticated multi-stage attack chains. While Large Language Models LLMs offer promising capabilities fo...
EUVD-2026-1862
Malicious code in oncecall PyPI...
CVE-2022-38881
The d8s-archives for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. The backdoor is the democritus-strings package. The affected version is 0.1.0...
EUVD-2026-1619
Malicious code in do-not-install-this-package-002 PyPI...
EUVD-2026-1624
Malicious code in btcli-security PyPI...
EUVD-2026-1352
Malicious code in lnatainstaller PyPI...
MAL-2026-128 Malicious code in lnatainstaller (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a613dbd371593bf6bcb7ae528a4d7d7dba2fedfc6670c8cb493bb5cbee18f734 Package is designed to download and execute a remote script, which then downloads and runs a malicious executable --- Category: MALICIOUS - The campaign has...
EUVD-2026-1354
Malicious code in codefrequencychecker PyPI...
EUVD-2026-1100
Malicious code in py-publish-test-0126 PyPI...
MAL-2026-98 Malicious code in py-publish-test-0126 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 993085ca23a6a729d332eade4d58778a42c1d19b18237ab4b3c3a6bacf9fd126 Dependency confusion demonstration package with reporting through a decorator function --- Category: PROBABLYPENTEST - Packages looking like typical pentest...
EUVD-2026-1101
Malicious code in testingpy PyPI...
EUVD-2026-1103
Malicious code in pycolorom PyPI...
MAL-2026-96 Malicious code in pycolorom (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 6babcee81c12759b66be4c0a8ba33c3f0272b052a47fda31227f4a6087ba8e5b The package, distinguished as a speed testing or typosquatted Telegram library, contains a Telegram bot to perform remote control of the computer --- Category:...
EUVD-2026-0928
Malicious code in lium-io-gztensor PyPI...
Malicious code in lium-io-gztensor (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 2f87521be2fb53979b969dc362d41bfcf6c9f860f8d6517a76889a81dedc06a1 This is a typosquatting/dependency confusion package that is part of a campaign embedding malicious code but was found before the malicious code was injected...
EUVD-2026-0929
Malicious code in lium-4-96 PyPI...
EUVD-2026-0930
Malicious code in async-substrate-interface-upgrade PyPI...
EUVD-2026-0931
Malicious code in celium-collateral-upgrade PyPI...
EUVD-2026-0926
Malicious code in gztensor-cli PyPI...