-
Notifications
You must be signed in to change notification settings - Fork 766
Open
Labels
securityCovers vulnerabilities and attack vectorsCovers vulnerabilities and attack vectors
Description
Hi!
Just letting you know, there is another malicious clone, named logguru, on PyPI and Github.
PyPI: hxxps://pypi[.]org/project/logguru
GitHub: hxxps://github[.]com/Delgann/loguru
If used, it will download malware:
The downloaded binary seems not to be detected by AVs yet (https://www.virustotal.com/gui/file/e3252fc08959fbb3e749f74eba1720efca62982e7017e519f54cb9c30480ee8f/detection) but acts as a stealer and attempts to collect browser data: https://tria.ge/251129-mp6cgsgk5v/behavioral1
I hope both projects will be gone soon, but I'm leaving the message here as a precaution for people.
Reactions are currently unavailable
Metadata
Metadata
Assignees
Labels
securityCovers vulnerabilities and attack vectorsCovers vulnerabilities and attack vectors