THREATPKG
SYNC STALE

Supply-chain threat intelligence

Incident detail

criticalpypi·credential theft·osv

Malicious code in spaysdatarbx (PyPI)

spaysdatarbx

Risk score

92

AI summary

Indexed incident for spaysdatarbx (pypi).

Description

The package exfiltrates Roblox cookies from the victim machine.

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2026-06-spaysrbdata

Reasons (based on the campaign):

  • infostealer

Technical details

Affected versions

=0.1.3=0.1.5

Indicators

  • affected version=0.1.375%
  • affected version=0.1.575%

Timeline

  1. Advisory published
  2. Indexed by ThreatPkg

Related incidents