CRITICAL PyPI Malware
Malicious code in learning-pypi-demo-nisimi (PyPI)
MAL-2025-47782
Published ยท Modified
Description
__
Source: kam193 (0b3a0d62b36ae3a2e643a327b7cf5b88366d4a8a89381eca570f34c453f1eaf4)
Installing packages exfiltrates data (different in different packages and versions) or run revshells
Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.
Campaign: 2025-08-learning-pypi-demo-nisimi
Reasons (based on the campaign):
The package contains code to create a reverse shell, allowing an attacker to execute any commands on the victim's machine.
exfiltration-generic
Ready to move
Start Securing
Free, no credit card | First findings in minutes