Lucene search
K

9169 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/25 4:53 p.m.6 views

Malicious code in reques (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7f1c117835fcc30eb4ff0ff5c9426d10011537b644ddea270fcdaba17ed7050e Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...

7.2AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/25 4:53 p.m.5 views

Malicious code in requestsa (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 0225bc4f200eb1897522fdfd971233a6c0e06527d802f2574ed4c31e618b1966 Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...

7.2AI score
Exploits0References1
OSV
OSV
added 2025/01/25 4:53 p.m.8 views

MAL-2025-1991 Malicious code in requesra (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 42ce5266dc952340618c995bfe692bd0f801b7b3d098188739aa66038074122e Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...

7.1AI score
Exploits0References1
OSV
OSV
added 2025/01/25 4:53 p.m.6 views

MAL-2025-1990 Malicious code in reques (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7f1c117835fcc30eb4ff0ff5c9426d10011537b644ddea270fcdaba17ed7050e Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...

7.1AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/25 4:53 p.m.5 views

Malicious code in rqsts (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f9b439bd545383aa5d5b1739d488888d95d4db48c34dc5d8c0339d0e95036af5 Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...

7.2AI score
Exploits0References1
OSV
OSV
added 2025/01/25 4:53 p.m.6 views

MAL-2025-1993 Malicious code in requestsa (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 0225bc4f200eb1897522fdfd971233a6c0e06527d802f2574ed4c31e618b1966 Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...

7.1AI score
Exploits0References1
OSV
OSV
added 2025/01/25 4:53 p.m.5 views

MAL-2025-1995 Malicious code in rqsts (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f9b439bd545383aa5d5b1739d488888d95d4db48c34dc5d8c0339d0e95036af5 Clone of the requests package that modified the code to send all get and post requests to a hardcoded URL --- Category: MALICIOUS - The campaign has clearly...

7.1AI score
Exploits0References1
OSV
OSV
added 2025/01/25 4:48 p.m.7 views

MAL-2025-1996 Malicious code in superline (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 59df95892042deb7d9fd8ce71d1890aeafd0cdab2cb8bbc3948504e74ccae39e Importing the package starts an advanced Infostealer, probably Blank Grabber, exfiltrating browser data, wifi passwords, discord and games tokens, crypto walle...

7.1AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/21 6:27 p.m.6 views

Malicious code in mlc-llm-nightly-cu123 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 99d49619be0a9e2bcedb22bd4ea489b5cb31a56558e763a78fd09a6f948f2d9e Installing the package exfiltrates information about the host, including environmental variables. --- Category: MALICIOUS - The campaign has clearly malicious...

7.3AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/21 6:27 p.m.6 views

Malicious code in mlc-ai-nightly-cu123 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 9c2954c829994eac2d7a1843849faec71a96ff47fdd4d6ac9453b654df2aedbf Installing the package exfiltrates information about the host, including environmental variables. --- Category: MALICIOUS - The campaign has clearly malicious...

7.3AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/21 6:27 p.m.4 views

Malicious code in mlc-ai-nightly-rocm62 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d19b7d0a36e093c723972a96552235036df64fd3c5e2ba6bb85d979a4c65c00d Installing the package exfiltrates information about the host, including environmental variables. --- Category: MALICIOUS - The campaign has clearly malicious...

7.3AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/21 6:27 p.m.5 views

Malicious code in mlc-ai-nightly (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7f1b0b9f87631941501e2d04d9eab7f1cd7232f770812e3373b736f9e682dc2a Installing the package exfiltrates information about the host, including environmental variables. --- Category: MALICIOUS - The campaign has clearly malicious...

7.3AI score
Exploits0References1
OSV
OSV
added 2025/01/21 6:27 p.m.7 views

MAL-2025-1981 Malicious code in mlc-ai-nightly-cu123 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 9c2954c829994eac2d7a1843849faec71a96ff47fdd4d6ac9453b654df2aedbf Installing the package exfiltrates information about the host, including environmental variables. --- Category: MALICIOUS - The campaign has clearly malicious...

7.2AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/14 4:53 p.m.6 views

Malicious code in amzn-awsglue (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 d53712580b3109807a0911c66dab7e45fa9f2968c76e2f31b5f0a23d23b03373 This is a couple of packages with names appearing to be a library for an AWS or other service. Their only behaviour is to call home on installation or import -...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/14 4:53 p.m.5 views

Malicious code in awsglueml (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 8a7eb55169fa28d500f750382641170b6a921f1ebca4e715a10d33b05ff78f8b This is a couple of packages with names appearing to be a library for an AWS or other service. Their only behaviour is to call home on installation or import -...

6.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/14 4:53 p.m.6 views

Malicious code in aws-glue (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 96424ced6ac0c4b9f671c5f7f03b4b99f7354e1eb2c48aba76f405f078a62ec6 This is a couple of packages with names appearing to be a library for an AWS or other service. Their only behaviour is to call home on installation or import -...

6.9AI score
Exploits0References1
OSV
OSV
added 2025/01/14 4:53 p.m.6 views

MAL-2025-2935 Malicious code in amzn-aws-glue-ml-libs-python (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e5986d73558862130dbb1317c6a92532786ec34f23d4d88c8fd6273198c5ce45 This is a couple of packages with names appearing to be a library for an AWS or other service. Their only behaviour is to call home on installation or import -...

6.8AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/10 1:26 p.m.5 views

Malicious code in utf-cleaner (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 09b9e5c5deafbf756df5201976fdbdc3c61c10e815234df9aeb32764a3cd9652 During import, the package silently downloads and executes remote code. This code starts a web server in the separate process and listens for commands to execu...

6.1AI score
Exploits0References3
OSV
OSV
added 2025/01/10 12:38 p.m.12 views

MAL-2025-1978 Malicious code in javascan (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 3b87a6ab9caea125ba4a71189d6a1740668e44d637f7e7c2d4f85daaf4f54ed0 During installation, a code is downloaded and executed. This remote script then attempts to exfiltrate environmental variables, SSH keys, Slack secrets etc. --...

7.2AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/01/10 12:38 p.m.4 views

Malicious code in javascan (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 3b87a6ab9caea125ba4a71189d6a1740668e44d637f7e7c2d4f85daaf4f54ed0 During installation, a code is downloaded and executed. This remote script then attempts to exfiltrate environmental variables, SSH keys, Slack secrets etc. --...

7.3AI score
Exploits0References1
Rows per page
Query Builder