MALICIOUS (1) campaign cataloged at 2025-07-16(2).
- The campaign has clearly malicious intent, like infostealers.
- This is just the date of creating the catalog entry. It may not reflect the date of creation of the campaign itself.
2025-07-python-uvicorn¶
Malicious copy of uvicorn package with added healthcheck endpoint that exfiltrates application settings/env vars
Abuse categories¶
action-hidden-in-lib-usage
Campaign uses action-hidden-in-lib-usage.
clons_real_package
The package is a clone of a real package, but with malicious code added.