web3-helpers @0.110.234
Vulnerability report · Last retrieved from osv.dev June 23, 2026 at 4:30 AM UTC
OSV ID
MAL-2026-3706
Ecosystem
pypi
Summary
During installation, package exfiltrates some basic info to a GitHub issue comment, and then attempt to set up a persistent infostealer focused on exfiltrating crypto wallets and browsers data. Likely continuation of 2026-05-py-requests --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign: 2025-06-alembic-util Reasons (based on the campaign): - infostealer - The package overrides the install command in setup.py to execute malicious code during installation. - crypto-related - Downloads and executes a remote malicious script. - exfiltration-browser-data - exfiltration-crypto - persistence - typosquatting
Source: kam193 (8d6102ae402b2583a01da47e71f41cccba99fb7826dcf360004d8924557e1760)
Protect your entire dependency tree
Scan your lock files automatically on every PR. Block malicious packages before they reach production.