Skip to content

browserdiv malicious PyPI package

Malware Published Aug 30, 2022 to the GitHub Advisory Database • Updated Aug 30, 2022

Package

pip browserdiv (pip)

Affected versions

>= 0

Patched versions

None

Description

Security researchers at Check Point Research discovered a malicious package called browserdiv that intended to steal credentials by collecting and sending them to a predefined Discord webhook. PyPI has since removed browserdiv.

References

Published to the GitHub Advisory Database Aug 30, 2022
Last updated Aug 30, 2022

EPSS score

Weaknesses

GHSA ID

GHSA-2wg3-9fjw-vjvj

Source code

No known source code
Improvements are not currently accepted on this advisory because this package is malware and has no patched versions. If there is something to change, please open an issue at https://github.com/github/advisory-database/issues.