Malicious code in yt-yson-bindings (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 870d6e991bf31676829c84080af299f206568bc11d6f9b42bf5fe2dca50cb79d Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2024-12371 Malicious code in yt-yson-bindings (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 870d6e991bf31676829c84080af299f206568bc11d6f9b42bf5fe2dca50cb79d Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

MAL-2023-995 Malicious code in yandex-yt-yson-bindings (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1ef8f5064d17e16f308f05ff124d515f803d1acfdc65fa58b4c26a8ac52041b2 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview yandex-yt-yson-bindings is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...