MAL-2026-5331
See a problem?- Import Source
- https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/bittensor-burn/MAL-2026-5331.json
- JSON Data
- https://api.osv.dev/v1/vulns/MAL-2026-5331
- Published
- 2026-06-08T18:25:57Z
- Modified
- 2026-06-08T20:30:54.106764726Z
- Summary
- Malicious code in bittensor-burn (PyPI)
- Details
-
-= Per source details. Do not edit below this line.=-
Source: kam193 (75331af1d73717c0eb5535938c91df41c17f5b205aa2e1545906527b0ff1c5a0)
The package contains code to steal clipboard content to a predefined remote location. If run in the right way, the code will periodically check the clipboard and if the content matches the pattern, exfiltrates it. The targeted data are likely cryptocurrency secret seed phrases.
Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.
Campaign: 2026-06-clip-logger
Reasons (based on the campaign):
clipboard-stealing
crypto-related
- Database specific
{ "malicious-packages-origins": [ { "sha256": "75331af1d73717c0eb5535938c91df41c17f5b205aa2e1545906527b0ff1c5a0", "modified_time": "2026-06-08T18:25:57.939022Z", "id": "pypi/2026-06-clip-logger/bittensor-burn", "versions": [ "1.8.0", "1.8.1" ], "import_time": "2026-06-08T19:19:19.164256551Z", "source": "kam193" }, { "sha256": "cdf215dbadd53a3eea10b66e2e7ebfb16a4aa78b10adc818ae16d262995b6e36", "modified_time": "2026-06-08T19:17:36.121924Z", "id": "pypi/2026-06-clip-logger/bittensor-burn", "versions": [ "1.8.0", "1.8.1" ], "import_time": "2026-06-08T20:18:23.039537474Z", "source": "kam193" } ] }- References
- Credits
-
-
- Kamil MaĆkowski (kam193) - REPORTER
-
Affected packages
PyPI / bittensor-burn
Package
- Name
- bittensor-burn
- View open source insights on deps.dev
- Purl
- pkg:pypi/bittensor-burn