{"id":"MAL-2026-3201","summary":"Malicious code in lightning (PyPI)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: kam193 (703ac419d775488be137d7e01517d768da0b5581ab63338fb9523f2289f2b92c)\nVersions 2.6.2, 2.6.3 were compromised.\n\n\nCompromised versions contain injected code that starts automatically during importing the module, downloads (legitimate) JavaScript runtime, and executes included JavaScript infostealer. It collects credentials from multiple sources (e.g. files, process memory, cloud metadata endpoints, CLI commands like gh or gcloud), sensitive cryptocurrency data, shell history files. It also attempts to spread itself using discovered credentials to other repositories and packages.\n\n\n---\n\nCategory: MALICIOUS - The campaign has clearly malicious intent, like infostealers.\n\n\nCampaign: 2026-04-compr-lightning\n\n\nReasons (based on the campaign):\n\n\n - infostealer\n\n\n - files-exfiltration\n\n\n - exfiltration-ssh-keys\n\n\n - exfiltration-crypto\n\n\n - exfiltration-credentials\n\n\n - compromised-package\n","modified":"2026-06-08T19:30:50.126139383Z","published":"2026-04-30T16:53:41Z","database_specific":{"malicious-packages-origins":[{"modified_time":"2026-04-30T16:53:41Z","versions":["2.6.2","2.6.3"],"id":"pypi/2026-04-compr-lightning/lightning","import_time":"2026-04-30T17:01:25.03549765Z","source":"kam193","sha256":"703ac419d775488be137d7e01517d768da0b5581ab63338fb9523f2289f2b92c"},{"modified_time":"2026-04-30T16:53:41Z","versions":["2.6.2","2.6.3"],"id":"pypi/2026-04-compr-lightning/lightning","import_time":"2026-04-30T18:35:47.62757048Z","source":"kam193","sha256":"21d1958db35f91cdd9e4daf8466ded080429f05ef2f989a858bef41af4d220b1"},{"modified_time":"2026-04-30T16:54:11Z","versions":["2.6.2","2.6.3"],"id":"pypi/2026-04-compr-lightning/lightning","import_time":"2026-06-08T19:19:19.167899846Z","source":"kam193","sha256":"ed90aeeb51f0c9480d8f0590f5c035de65bd67722be97987087abbca61e5a21f"}]},"references":[{"type":"WEB","url":"https://github.com/Lightning-AI/pytorch-lightning/issues/21691"},{"type":"WEB","url":"https://www.aikido.dev/blog/pytorch-lightning-pypi-compromise-mini-shai-hulud"},{"type":"WEB","url":"https://socket.dev/blog/lightning-pypi-package-compromised"},{"type":"WEB","url":"https://bad-packages.kam193.eu/pypi/campaign/2026-04-compr-lightning"},{"type":"WEB","url":"https://github.com/Lightning-AI/pytorch-lightning/security/advisories/GHSA-w37p-236h-pfx3"}],"affected":[{"package":{"name":"lightning","ecosystem":"PyPI","purl":"pkg:pypi/lightning"},"versions":["2.6.2","2.6.3"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/pypi/lightning/MAL-2026-3201.json"}}],"schema_version":"1.7.5","credits":[{"name":"Kamil Mańkowski (kam193)","contact":["https://github.com/kam193","https://bad-packages.kam193.eu/"],"type":"ANALYST"}]}