Skip to main content
Press slash or control plus K to focus the search. Use the arrow keys to navigate results and press enter to open a threat.

Threats Tagged 'sandbox evasion'

View all threats tagged with 'sandbox evasion'. Filter and sort to focus on specific types of threats.

Pro Console Lifetime

Stop chasing alerts. Route them.

Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.

Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)

View Plans & Pricing

API access activates after upgrading in Console -> Billing.

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now

Filter Threats

Narrow down the results by type, severity, or affected countries

Search threats by title, CVE ID, or description. Maximum 100 characters.
Active filters (1):Tag: sandbox evasion

Threats Tagged 'sandbox evasion'

Click on any threat for detailed analysis and mitigation recommendations

Coordinated npm and PyPI Campaign Typosquats Popular Secure Payment Apps
0

A coordinated campaign identified on July 7, 2026, involved 17 malicious packages published simultaneously across the npm and PyPI ecosystems. These packages typosquatted legitimate payment SDKs such as PaySafe, Skrill, and Neteller to steal developer credentials and tokens. The malware uses advanced anti-analysis techniques including sandbox detection based on CPU cores and hostname patterns, multi-layer C2 domain obfuscation with XOR encoding, and selective activation gating. Once executed, the packages exfiltrate environment variables containing sensitive API keys, secrets, tokens, and authentication credentials to AWS-hosted infrastructure via an ngrok endpoint. This campaign reflects a financially motivated, organized threat actor with cross-ecosystem capabilities and operational security awareness.

Join the discussion

Showing 1 to 1 of 1 result

Filters:Tag: sandbox evasion
Page 1 of 1
OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited
View courses