pypi · Malicious package advisory
Malwarefredli
MAL-2023-3575
Malicious code in fredli (PyPI)
Details
--- _-= Per source details. Do not edit below this line.=-_ ## Source: checkmarx (3d49716b05f951243dfb12ab8ce3d149d9ea2201c95309c1795c1a80bb13797a) EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware
Compromised versions (1)
- 3.9
Any computer that installed or ran a compromised version should be considered fully compromised. Rotate every secret on that machine from a clean environment.