Logo
pypi

eth-web3-utils @1.0.0

Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 3:29 AM UTC

Malicious

OSV ID

MAL-2026-3379

Ecosystem

pypi

Summary

Code pretends to be an ETH utility and exfiltrates the given seed/private key --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2026-05-solana-wallet-sdk Reasons (based on the campaign): - files-exfiltration - crypto-related - exfiltration-crypto

Source: kam193 (ab01b68589d4f3b1e8686ed007d522f24c8259049cb211a023ac3f3ff8f56ce4)

Protect your entire dependency tree

Scan your lock files automatically on every PR. Block malicious packages before they reach production.

SEE HACKTRON REVIEW → SCAN DEPENDENCIES