asynhttp

MAL-2025-191619

PyPItyposquat10/22/2025
Description

Malicious code in asynhttp (PyPI)

Indicators of Compromise
SHA256 Hashes (5)
27f648a30d77874cfffeb97c2052d67485ed66da94f30db8cf52415393a89ca0
649f3bd8674eef95a14f9f389db5a8900362ba5f5f18381ffaa885a43395db8a
2c5f91525485110943474c187077da4ab6ef21e3209e4d6e7abf1007321cf1cd
058c3bab076ccb770a3ecaefbdb301df88bd935a79f154cdeb329c51c4a1eef5
d26ba778d37d3f66388d7a6df9468b6b43847d3f998df59716fb385da9a84fc1
References (3)
https://www.cert.at/en/blog/2025/10/how-typosquatting-tricked-me-a-bitOSVhttps://www.cert.at/en/blog/2025/10/how-typosquatting-tricked-me-a-bitOSVhttps://bad-packages.kam193.eu/pypi/package/asynhttpOSV
Details
EcosystemPyPI
Attack Typetyposquat
Published10/22/2025
Quick Actions
All IncidentsPyPI Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001