elementary-data

MAL-2026-3083

PyPImalware4/24/2026
Description

Malicious code in elementary-data (PyPI)

Indicators of Compromise
SHA256 Hashes (4)
83f9b178b520d3ad8b49bc9ea2b454eacf64fc302ec42aff6f90a1245af299e9
96dc65f67f54411d3de6b23a33a8f73665e2703d7261b7f1720cdc089c528eea
fcb538f8a937dd2e97532899be80827772aa99f0523c582aef301682d6e96b75
cc802c0d8b918c99b39f26f473e8090b7073d45268b399df2e2ff5d5549c2a37
Domains (1)
igotnofriendsonlineorirl-imgonnakmslmao.skyhanni.cloud
References (10)
https://github.com/elementary-data/elementary/issues/2205OSVhttps://github.com/realtungtungtungsahurOSVhttps://github.com/elementary-data/elementary/actions/runs/24914128534/job/72962412074OSVhttps://github.com/elementary-data/elementary/pull/2204/changesOSVhttps://github.com/elementary-data/elementary/pull/2203/changesOSVhttps://github.com/elementary-data/elementary/pull/2203OSVhttps://github.com/elementary-data/elementary/actions/runs/24914446630OSVhttps://bad-packages.kam193.eu/pypi/campaign/2026-04-compr-elementary-dataOSVhttps://www.stepsecurity.io/blog/elementary-data-compromised-on-pypi-and-ghcr-forged-release-pushed-via-github-actions-script-injectionOSVhttps://www.elementary-data.com/post/security-incident-report-malicious-release-of-elementary-oss-python-cli-v0-23-3OSV
Details
EcosystemPyPI
Attack Typemalware
Published4/24/2026
Quick Actions
All IncidentsPyPI Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001