pypi
Malicious randomchoicemas @1.0.1
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 4:30 AM UTC
OSV ID
MAL-2026-3324
Ecosystem
pypi
Summary
The package silently exfiltrates screenshots and basic data. --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2026-05-randomchoicemas Reasons (based on the campaign): - spyware-like - exfiltration-generic - action-hidden-in-lib-usage
Source: kam193 (0dc4c38310ad4ec9a939abd09fa48fce4f2f2e91e02389d59f3fefc30eda4c2c)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.