Malware Report
Title
More Than 200 Cryptomining Packages Flood npm and PyPI Registry
Report Author
Ax Sharma
Description
More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts.
Malware Packages (55)
The following malware packages were identified in this report.
| Package Type | Name | Attack Strategy | Package Author | Versions | Description |
|---|---|---|---|---|---|
| Pypi Package | aiohtp | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | aouthlib | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | argpars | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | arpgrase | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | ataclasses-json | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | azure-mgmt-authorizatio | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | azure-mgmt-authroization | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | azure-mgmt-containerregistr | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | azure-mgmt-containrregistry | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | bbeautifulsoup4 | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | beautfiulsoup4 | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | cacheools | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | cachetoosl | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | charset-noramlizer | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | charset-normaliz | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | coloraam | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | coloraama | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | colormaa | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | coolorama | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | cryptogarphy | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | dataclass-json | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | dataclasses-jso | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | googl-auth | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | great-expectation | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | hcarset-normalize | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | iohttp | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | jnija2 | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | jupyter-cor | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | juupyter-core | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | knac | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | oatuhlib | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | oauthlbi | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | oautlhib | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | oogle-auth | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | oupsieve | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | portobuf | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | prtobuf | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | pycparse | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | pyparisng | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | pyparsign | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | pyprasing | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | pytho-dateuti | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | python-dateuitl | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | python-dateut | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | python-dateutils | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | python-json-logge | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | rotobuf | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | ryptography | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | semve | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | soupseive | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | soupsiev | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | upyter-core | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | ython-json-logger | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | zure-mgmt-authorization | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Pypi Package | zure-mgmt-containerregistry | More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts. | |||
| Package Type | Name | Attack Strategy | Package Author | Versions | Description |