Threats Tagged 'native extensions'
View all threats tagged with 'native extensions'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'native extensions'
Click on any threat for detailed analysis and mitigation recommendations
Mini Shai-Hulud, Miasma, and Hades Worms Target Bioinformatics and MCP Developers via Malicious PyPI Wheels 0 A sophisticated supply chain attack campaign targets developers by distributing malicious packages across npm and PyPI repositories. The campaign involves 471 affected artifacts, including 23 PyPI packages disguised as bioinformatics tools, AI frameworks, and popular libraries such as requests and Flask. The malware uses multiple delivery methods including executable . pth startup hooks, trojanized native . abi3. so extensions, and a split loader-payload architecture. It deploys heavily obfuscated JavaScript stealers via the Bun runtime to harvest sensitive credentials like GitHub tokens, npm registry access, cloud credentials, SSH keys, and CI/CD secrets. The malware also incorporates anti-analysis techniques designed to disrupt AI-assisted security scanners. The attack specifically targets developer workstations and automated build environments. Join the discussion | AlienVault OTX General | 06/08/2026, 19:36:05 UTC Added: 06/09/2026, 08:55:44 UTC |
Showing 1 to 1 of 1 result