9169 matches found
Malicious code in prof-qux (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 5b87af8d8f13bd43c1cf3490ea551b8d60fe05a482875597ef2fe5d2c200ca19 Package silently exfiltrates user's credentials ahead of starting the promised functionality. First batch used simple code, the newer attempt to hide...
MAL-2025-191822 Malicious code in prof-qx (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 eb25a7704dc642f82be2ae6a92dcd60cc3235144351fbc18cd11ca96d970c7e3 Package silently exfiltrates user's credentials ahead of starting the promised functionality. First batch used simple code, the newer attempt to hide...
Malicious code in m5tlprovetomegz (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 41041b6e55e23e7b8d40be5bb95a75fdba5b64cb9524c86054deabcd2177e459 Importing the module starts downloading and executing a file recognized as malicious by AVs --- Category: MALICIOUS - The campaign has clearly malicious intent...
PyPitfall: Dependency Chaos and Software Supply Chain Vulnerabilities in Python
Python software development heavily relies on third-party packages. Direct and transitive dependencies create a labyrinth of software supply chains. While it is convenient to reuse code, vulnerabilities within these dependency chains can propagate through dependencies, potentially affecting...
batata-lib (>=0.1.7 <=0.1.8), boosty-downloader (>=1.0.0 <=3.0.0) +76 more potentially affected by CVE-2025-54072 via yt-dlp (>=2025.10.14 <=2025.6.9)
yt-dlp PYPI version =2025.10.14, =0.1.7, =1.0.0, =0.0.2, =0.1.16, =0.4.3, =0.0.2.2, =0.1.0, =3.2.0, =3.4.2 and more Source cves: CVE-2025-54072 Source advisory: SNYK:PYTHON-YTDLP-10878169...
Malicious code in testpackageroietest4 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 8513ccd29444557d2b772e8c39dcbac59fc00b022d9119643a3b8dc9906585b1 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-41777 Malicious code in testpackageroietest4 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 8513ccd29444557d2b772e8c39dcbac59fc00b022d9119643a3b8dc9906585b1 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in donotinstallthisistest5 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 69bdb408fdc5c6421ad916ee033682fdeb9c45276fa003370aa364afc28a8ec8 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2025-41664 Malicious code in donotinstallthisistest5 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 69bdb408fdc5c6421ad916ee033682fdeb9c45276fa003370aa364afc28a8ec8 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in donotinstallthisistest6 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 272225f1adba5810796fd9c194041e72e5fcdcc032fa296a701bcc480b37bfcb Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in set7 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 8e2e9040a08a54eb2600701e50e4137fd9959873e23cb5c6c4845e0a4f3f6564 Package downloads and suggest opening an obfuscated script, which is an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
MAL-2025-41760 Malicious code in set7 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 8e2e9040a08a54eb2600701e50e4137fd9959873e23cb5c6c4845e0a4f3f6564 Package downloads and suggest opening an obfuscated script, which is an infostealer --- Category: MALICIOUS - The campaign has clearly malicious intent, like...
MAL-2025-191683 Malicious code in aphorism-lib (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 95f15b2b497431703ff51667a4055e8172f9202aeeea0f725b0b0550812f3299 Importing the module starts a telegram bot that connects to a chat and executes provided commands --- Category: MALICIOUS - The campaign has clearly malicious...
MAL-2025-191885 Malicious code in talbat (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 fa560ce194b853d26b02cc7a6fc99298c2b1de4516a8beb84b84475aa1fb23b3 Importing the module starts a telegram bot that connects to a chat and executes provided commands --- Category: MALICIOUS - The campaign has clearly malicious...
Malicious code in rbx1325382 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 966cc45844a609edfa292523c993aa173d39c710d8856c06f30d5d73d82f48e9 During installation, package attempts to exfiltrate browser data --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
MAL-2025-41735 Malicious code in rbx1325382 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 966cc45844a609edfa292523c993aa173d39c710d8856c06f30d5d73d82f48e9 During installation, package attempts to exfiltrate browser data --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
MAL-2025-41734 Malicious code in rbx1325 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7895e3c185d37126abdb72411a2b02b7d78325ca51e4cecd4303e282608b8966 During installation, package attempts to exfiltrate browser data --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
Malicious code in rbx1325 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7895e3c185d37126abdb72411a2b02b7d78325ca51e4cecd4303e282608b8966 During installation, package attempts to exfiltrate browser data --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers...
Malicious code in svcmanager (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 062d589e7c49394864a13694f3de2a89589fd2f5e6a4d2e43e35ce136b6e7e9c Package attempts to download an executable and install it as a privileged service. The executable seems to be modified remote access tool --- Category: MALICIO...
MAL-2025-191685 Malicious code in avatar-handler (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 c3750cf8fac7fc22334d1fb416e7f3af691425c669829dcc9857abdc1384bbb7 Code pretending to handling downloading an image, but in fact is prepared to download and execute a Powershell script image properties. No known usage ---...