SYNC STALE

Supply-chain threat intelligence

Incident detail

criticalpypi·malware·osv

Malicious code in pylogkt (PyPI)

Published May 25, 2026, 03:28 AM

Risk score

92

AI summary

Indexed incident for pylogkt (pypi).

Description

Package silently executes remote code during import.

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2026-05-lognest

Reasons (based on the campaign):

Downloads and executes a remote malicious script.

Technical details

Timeline

May 25, 03:28 AMAdvisory published
May 25, 12:51 PMIndexed by ThreatPkg

Related incidents