Incident detail

criticalpypi·credential theft·osv

Malicious code in bittensor-burn (PyPI)

bittensor-burn

Published Jun 8, 2026, 06:25 PM

Risk score

AI summary

Indexed incident for bittensor-burn (pypi).

Description

The package contains code to steal clipboard content to a predefined remote location. If run in the right way, the code will periodically check the clipboard and if the content matches the pattern, exfiltrates it. The targeted data are likely cryptocurrency secret seed phrases.

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2026-06-clip-logger

Reasons (based on the campaign):

clipboard-stealing
crypto-related

Technical details

Affected versions

=1.8.0=1.8.1

Indicators

affected version=1.8.075%
affected version=1.8.175%

Timeline

Jun 8, 06:25 PMAdvisory published
Jun 9, 06:04 AMIndexed by ThreatPkg

Related incidents

Malicious code in spaysrbx (PyPI)spaysrbx92
Malicious code in nerfstudio-gs (PyPI)nerfstudio-gs92
Malicious code in bittensor-burn-alert (PyPI)bittensor-burn-alert92
Malicious code in bittensor-burn-monitor (PyPI)bittensor-burn-monitor92
Malicious code in bittensor-burn-watch (PyPI)bittensor-burn-watch92