9169 matches found
MAL-2025-191651 Malicious code in my-first-pypi-demo (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f789a8192ed7a62a0fa9327e495ac8ca2658ff556673ca8d207f7954204ec160 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in nukecount (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 1c580cf8d8131f2ffd1d0f7b171d118de85e69ef0f1d1b67f5ebc8b5ce3c804d Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
Malicious code in randar303 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 9ec94332277ac2c470647f10f1be8faace9da41d55c024e2d33c021ffe69f88d Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
MAL-2025-47800 Malicious code in randar303 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 9ec94332277ac2c470647f10f1be8faace9da41d55c024e2d33c021ffe69f88d Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
Malicious code in buildpeople (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a66da54489a807c99f01a12ccc490a7111f8929f15b2f28d3a1c9a1cc07c1563 Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
MAL-2025-47751 Malicious code in buildpeople (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a66da54489a807c99f01a12ccc490a7111f8929f15b2f28d3a1c9a1cc07c1563 Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
Malicious code in noonutil (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 98fa038a694e6d6093bffd74d004ed294a314282441904ee8d0b7234c082ef33 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-47788 Malicious code in noonutil (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 98fa038a694e6d6093bffd74d004ed294a314282441904ee8d0b7234c082ef33 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-47777 Malicious code in k7eel (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 83c1a6d9a050eb6c1ea689f9b98e7b7028c246c7aaf70626527025eb70fb670e Importing the module downloads and executes widely recognized malware --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
Malicious code in tronwalletpy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 56511b34963408835ce65f2e9e6cce2ae79f95902e1a4cea9fb2577e0c737d63 Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...
MAL-2025-47809 Malicious code in tronwalletpy (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 56511b34963408835ce65f2e9e6cce2ae79f95902e1a4cea9fb2577e0c737d63 Package appears to be designed for private key exfiltration, but no known usage. The name appears to be related to the cryptocurrency TRX Tron / Tronix. Some...
PyPI Blocks 1,800 Expired-Domain Emails to Prevent Account Takeovers and Supply Chain Attacks
The maintainers of the Python Package Index PyPI repository have announced that the package manager now checks for expired domains to prevent supply chain attacks. "These changes improve PyPI's overall account security posture, making it harder for attackers to exploit expired domain names to gai...
MAL-2025-191697 Malicious code in caas-jupyter-tools (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 48a472c7cfbdf9c730e06e827de93f0566895c78f6b1130ec814a31958409d94 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious PyPI and npm Packages Discovered Exploiting Dependencies in Supply Chain Attacks
Cybersecurity researchers have discovered a malicious package in the Python Package Index PyPI repository that introduces malicious behavior through a dependency that allows it to establish persistence and achieve code execution. The package, named termncolor , realizes its nefarious functionalit...
MAL-2025-6897 Malicious code in swiv (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 945d4a5f54e77ae66588b5b64aa30eb2627903bffcb72a3031b9c4b6b2122b43 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in pytensorlite (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 188201cba6b48f33920bc11fd719f4dcc6a78b6ca0e1c038f6a950027522cbe2 Importing the module downloads and starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...
MAL-2025-47795 Malicious code in pytensorlite (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 188201cba6b48f33920bc11fd719f4dcc6a78b6ca0e1c038f6a950027522cbe2 Importing the module downloads and starts an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...
Malicious code in titifel-pyip (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 db04496b1d3e7bb6d0e4f13530466504551bf243744fb5f0748195d38a11b0f3 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-47803 Malicious code in titifel-pyip (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 db04496b1d3e7bb6d0e4f13530466504551bf243744fb5f0748195d38a11b0f3 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-47783 Malicious code in libgomp (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d390b58898a977fec39e6d1fe725cf5c2bcb09b2ecf4c2294a23d75a56dd71a6 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...