9169 matches found
Malicious code in requestsa (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 0225bc4f200eb1897522fdfd971233a6c0e06527d802f2574ed4c31e618b1966 Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...
Malicious code in rqsts (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f9b439bd545383aa5d5b1739d488888d95d4db48c34dc5d8c0339d0e95036af5 Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...
Malicious code in reques (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7f1c117835fcc30eb4ff0ff5c9426d10011537b644ddea270fcdaba17ed7050e Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...
MAL-2025-1995 Malicious code in rqsts (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f9b439bd545383aa5d5b1739d488888d95d4db48c34dc5d8c0339d0e95036af5 Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...
MAL-2025-1993 Malicious code in requestsa (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 0225bc4f200eb1897522fdfd971233a6c0e06527d802f2574ed4c31e618b1966 Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...
MAL-2025-1990 Malicious code in reques (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7f1c117835fcc30eb4ff0ff5c9426d10011537b644ddea270fcdaba17ed7050e Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...
MAL-2025-1991 Malicious code in requesra (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 42ce5266dc952340618c995bfe692bd0f801b7b3d098188739aa66038074122e Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...
MAL-2025-1996 Malicious code in superline (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 59df95892042deb7d9fd8ce71d1890aeafd0cdab2cb8bbc3948504e74ccae39e Importing the package starts an advanced Infostealer, probably Blank Grabber, exfiltrating browser data, wifi passwords, discord and games tokens, crypto walle...
Malicious code in mlc-llm-nightly-cu123 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 99d49619be0a9e2bcedb22bd4ea489b5cb31a56558e763a78fd09a6f948f2d9e Installing the package exfiltrates information about the host, including environmental variables. --- Category: MALICIOUS - The campaign has clearly malicious...
Malicious code in mlc-ai-nightly-cu123 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 9c2954c829994eac2d7a1843849faec71a96ff47fdd4d6ac9453b654df2aedbf Installing the package exfiltrates information about the host, including environmental variables. --- Category: MALICIOUS - The campaign has clearly malicious...
Malicious code in mlc-ai-nightly-rocm62 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d19b7d0a36e093c723972a96552235036df64fd3c5e2ba6bb85d979a4c65c00d Installing the package exfiltrates information about the host, including environmental variables. --- Category: MALICIOUS - The campaign has clearly malicious...
Malicious code in mlc-ai-nightly (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7f1b0b9f87631941501e2d04d9eab7f1cd7232f770812e3373b736f9e682dc2a Installing the package exfiltrates information about the host, including environmental variables. --- Category: MALICIOUS - The campaign has clearly malicious...
MAL-2025-1981 Malicious code in mlc-ai-nightly-cu123 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 9c2954c829994eac2d7a1843849faec71a96ff47fdd4d6ac9453b654df2aedbf Installing the package exfiltrates information about the host, including environmental variables. --- Category: MALICIOUS - The campaign has clearly malicious...
Malicious code in amzn-awsglue (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 d53712580b3109807a0911c66dab7e45fa9f2968c76e2f31b5f0a23d23b03373 This is a couple of packages with names appearing to be a library for an AWS or other service. Their only behaviour is to call home on installation or import -...
Malicious code in aws-glue (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 96424ced6ac0c4b9f671c5f7f03b4b99f7354e1eb2c48aba76f405f078a62ec6 This is a couple of packages with names appearing to be a library for an AWS or other service. Their only behaviour is to call home on installation or import -...
Malicious code in awsglueml (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 8a7eb55169fa28d500f750382641170b6a921f1ebca4e715a10d33b05ff78f8b This is a couple of packages with names appearing to be a library for an AWS or other service. Their only behaviour is to call home on installation or import -...
MAL-2025-2935 Malicious code in amzn-aws-glue-ml-libs-python (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 e5986d73558862130dbb1317c6a92532786ec34f23d4d88c8fd6273198c5ce45 This is a couple of packages with names appearing to be a library for an AWS or other service. Their only behaviour is to call home on installation or import -...
Malicious code in utf-cleaner (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 09b9e5c5deafbf756df5201976fdbdc3c61c10e815234df9aeb32764a3cd9652 During import, the package silently downloads and executes remote code. This code starts a web server in the separate process and listens for commands to execu...
Malicious code in javascan (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3b87a6ab9caea125ba4a71189d6a1740668e44d637f7e7c2d4f85daaf4f54ed0 During installation, a code is downloaded and executed. This remote script then attempts to exfiltrate environmental variables, SSH keys, Slack secrets etc. --...
MAL-2025-1978 Malicious code in javascan (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3b87a6ab9caea125ba4a71189d6a1740668e44d637f7e7c2d4f85daaf4f54ed0 During installation, a code is downloaded and executed. This remote script then attempts to exfiltrate environmental variables, SSH keys, Slack secrets etc. --...