THREATPKG
SYNC STALE
Supply-chain threat intelligence
Incident detail
Risk score
92
AI summary
Indexed incident for telegramlite (pypi).
Description
Package exfiltrates data from the Telegram application to a remote location, effectively collecting Telegram sessions.
Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.
Campaign: 2026-06-telegramlite
Reasons (based on the campaign):
target:telegram
files-exfiltration
Technical details
Affected versions
=1.0.0=1.0.1
Indicators
- affected version=1.0.075%
- affected version=1.0.175%
Timeline
- Advisory published
- Indexed by ThreatPkg
Related incidents
- Malicious code in @sentry-internal-sdk/profiling-node (npm)@sentry-internal-sdk/profiling-node92
- Malicious code in nim-submit-for-test (npm)nim-submit-for-test92
- Malicious code in @koadz/sso (npm)@koadz/sso92
- Malicious code in field-upload-tool (npm)field-upload-tool92
- Malicious code in solana-rpc-pool (npm)solana-rpc-pool92