{"id":"MAL-2024-9960","summary":"Malicious code in cipherbcryptors (PyPI)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n","aliases":["SNYK-PYTHON-CIPHERBCRYPTORS-8145482"],"modified":"2025-03-03T15:42:05.863906Z","published":"2024-10-16T14:37:51Z","database_specific":{"malicious-packages-origins":[{"source":"reversing-labs","modified_time":"2024-10-16T14:37:51Z","versions":["1.3.1","1.3.2"],"id":"RLMA-2024-07960","import_time":"2024-10-24T00:56:54.77220725Z","sha256":"0313f3e0c24c2f6d85a3012656ebfe14e8139bcd0851428605337c3bba3fb6b0"},{"source":"reversing-labs","modified_time":"2024-12-09T06:49:59Z","id":"RLUA-2024-11004","import_time":"2024-12-09T14:38:53.338882413Z","sha256":"bf884d2db3f550d91e6679ecb9a3ac53f736d65b56471e1bec67ffcb797f88b3"},{"source":"reversing-labs","modified_time":"2025-03-03T13:44:45Z","id":"RLUA-2025-01207","import_time":"2025-03-03T15:07:34.176798938Z","sha256":"32414aeb53b8bce6e917c58d4a548bde85aca2640c4a75d5c522aea91bdb7249"}]},"references":[{"type":"ARTICLE","url":"https://checkmarx.com/blog/crypto-stealing-code-lurking-in-python-package-dependencies"},{"type":"ADVISORY","url":"https://security.snyk.io/vuln/SNYK-PYTHON-CIPHERBCRYPTORS-8145482"}],"affected":[{"package":{"name":"cipherbcryptors","ecosystem":"PyPI","purl":"pkg:pypi/cipherbcryptors"},"versions":["1.3.1","1.3.2"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/cipherbcryptors/MAL-2024-9960.json"}}],"schema_version":"1.7.3","credits":[{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}