{"id":"MAL-2024-4820","summary":"Malicious code in bips-utils (PyPI)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n","aliases":["SNYK-PYTHON-BIPSUTILS-6513466"],"modified":"2024-10-24T01:01:58Z","published":"2024-06-25T13:32:50Z","database_specific":{"malicious-packages-origins":[{"versions":["1.0.0"],"modified_time":"2024-06-25T13:32:50Z","import_time":"2024-06-28T02:48:22.129044491Z","sha256":"25b286c935a59041ab8095872d5b74a22bb9973c2c9ce187c2970d2e836febeb","source":"reversing-labs","id":"RLMA-2024-03600"},{"modified_time":"2024-10-16T14:36:59Z","import_time":"2024-10-24T00:58:50.239165339Z","sha256":"ebd28f8e490621bc3fb3af089be40df388b935a2117ff66c16ab4315157d2a45","source":"reversing-labs","id":"RLUA-2024-07879"}]},"references":[{"type":"ARTICLE","url":"https://medium.com/checkmarx-security/pypi-is-under-attack-project-creation-and-user-registration-suspended-heres-the-details-c3b6291d4579"},{"type":"ADVISORY","url":"https://security.snyk.io/vuln/SNYK-PYTHON-BIPSUTILS-6513466"}],"affected":[{"package":{"name":"bips-utils","ecosystem":"PyPI","purl":"pkg:pypi/bips-utils"},"versions":["1.0.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/bips-utils/MAL-2024-4820.json"}}],"schema_version":"1.7.3","credits":[{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}