THREATPKG
SYNC STALE

Supply-chain threat intelligence

Incident detail

criticalpypi·credential theft·osv

Malicious code in modulebuild3240234t (PyPI)

modulebuild3240234t

Risk score

92

AI summary

Indexed incident for modulebuild3240234t (pypi).

Description

-= Per source details. Do not edit below this line.=-

Source: kam193 (4d5962bd4c41d59c276f1fa132030098e557dee6bfe0b0a368a952f70d217287)

The package contains an infostealer targeting the Roblox ecosystem.

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2026-05-modulebuild3240234t

Reasons (based on the campaign):

  • obfuscation

  • infostealer

  • exfiltration-credentials

Technical details

Affected versions

<function fixed() { [native code] }

Indicators

  • affected_version<function fixed() { [native code] }75%
  • affected_version<function fixed() { [native code] }75%
  • affected_version<function fixed() { [native code] }75%
  • affected_version<function fixed() { [native code] }75%

Timeline

  1. Advisory published
  2. Indexed by ThreatPkg

Related incidents