THREATPKG
SYNC STALE
Supply-chain threat intelligence
Incident detail
Risk score
92
AI summary
Indexed incident for spaysrbdata (pypi).
Description
The package exfiltrates Roblox cookies from the victim machine.
Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.
Campaign: 2026-06-spaysrbdata
Reasons (based on the campaign):
- infostealer
Technical details
Indicators
- affected version<function fixed() { [native code] }75%
- affected version<function fixed() { [native code] }75%
- affected version<function fixed() { [native code] }75%
- affected version<function fixed() { [native code] }75%
- affected version<function fixed() { [native code] }75%
Timeline
- Advisory published
- Indexed by ThreatPkg
Related incidents
- Malicious code in bittensor-burn-watch (PyPI)bittensor-burn-watch92
- Malicious code in clip-logger (PyPI)clip-logger92
- Malicious code in executable-stories-jest (npm)executable-stories-jest92
- Malicious code in wrangler-deploy (npm)wrangler-deploy92
- Malicious code in node-env-resolver (npm)node-env-resolver92