MAL-2026-3218 Malicious code in my-pipeline-watcher-poc (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 78f513e5eabf5ee549e85154e86f71885e76bb0052ec815bbbb8c090bb2cf2b1 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Malicious code in robase-ui (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 9ca93a110c410fd6294e5270289bebb1872f9b81152d837f4990756881646cc0 During installation package downloads and runs a malicious executable. Likely continuation of 2026-03-rowrap. The campaign is built over a malicious Roblox API...

MAL-2024-12194 Malicious code in artifact-lab-3-package-1b4d0db5 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 83985ca753144131ccc8e470c2c191dc795a54018f39ad92f28855725febfe25 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

MAL-2024-12192 Malicious code in artifact-lab-3-package (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 0c18a16c7c21d93a8819aed298f6691835b1a31546ca573eb94ce4265d4fb291 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...