THREATPKG
SYNC STALE
Supply-chain threat intelligence
Incident detail
Risk score
92
AI summary
Indexed incident for pylogxo (pypi).
Description
During import, the package downloads and executes remote code being an infostealer.
Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.
Campaign: 2026-06-pylogxo
Reasons (based on the campaign):
Downloads and executes a remote malicious script.
infostealer
The package contains code to detect if it is running in a sandbox environment.
exfiltration-credentials
exfiltration-browser-data
files-exfiltration
Technical details
Affected versions
=1.0.3=1.0.4
Indicators
- affected version=1.0.375%
- affected version=1.0.475%
Timeline
- Advisory published
- Indexed by ThreatPkg
Related incidents
- Malicious code in trongap (PyPI)trongap92
- Malicious code in bittensor-burn-message (PyPI)bittensor-burn-message92
- Malicious code in pc-optimizer (npm)pc-optimizer92
- Malicious code in bibip-bip (PyPI)bibip-bip92
- Malicious code in @sentry-internal-sdk/profiling-node (npm)@sentry-internal-sdk/profiling-node92