Latest PyPi Compromise
Essential information
- Published
- 20/05/2026 00:26
- Modified
- 21/05/2026 00:36
- Source / Author
- AlienVault
- Confidence
- 100/100
- Report type(s)
- threat-report
- Labels / Tags
- aws ssm propagation credential theft durabletask github secrets kubernetes lateral movement managed.pyz password manager pypi compromise rope.pyz supply chain attack transformers.pyz
- Tags
- 2026-05-19 aws ssm propagation credential-theft durabletask github secrets kubernetes lateral movement managed.pyz password manager pypi compromise rope.pyz supply chain attack transformers.pyz
- Related entities
- 9 indicators, 9 observables, 1 intrusion sets (apt), 20 techniques (mitre), 3 malware, 3 others
Description
A supply chain attack targeting the Microsoft DurableTask Python client compromised versions 1.4.1, 1.4.2, and 1.4.3 on PyPi. The threat actor gained access through a compromised GitHub account previously linked to attacks, using stolen credentials to dump GitHub secrets containing PyPi tokens. The evolved payload targets Linux systems, stealing credentials from AWS, Azure, GCP, Kubernetes, Vault, and password managers like Bitwarden and 1Password. It propagates via AWS SSM and Kubernetes lateral movement, limited to 5 targets per infected host. The payload scrapes shell history, bruteforces password managers, and establishes persistence through infection markers. Compromised packages were quarantined following analysis.