PyPI package spellcheckers delivers next-stage RAT
Malware Activity
Summary
Hide ▲
Show ▼
The malicious PyPI package spellcheckers was found delivering a next-stage payload and a remote access trojan (RAT), creating a direct compromise path for anyone who installs and runs it. The package disguises itself as an OpenAI Vision spelling checker while connecting to an external server to fetch attacker code. That behavior can give the operator remote control of victim hosts. The package was first uploaded on 2025-11-15 and has since been removed.
Related Happenings
Famous Chollima PromptMink supply-chain campaign targeting Web3 developers
Campaign
First: 29.04.2026 17:43
Last: 29.04.2026 17:43
Sources 1
About this happening:
The **PromptMink** campaign is widening **Famous Chollima**'s supply-chain intrusion playbook by pushing **tainted npm packages** into developer environments and stealing secrets....
Famous Chollima PromptMink supply-chain campaign targeting Web3 developers
CampaignAbout this happening: The **PromptMink** campaign is widening **Famous Chollima**'s supply-chain intrusion playbook by pushing **tainted npm packages** into developer environments and stealing secrets....
GlassWorm multi-stage data-theft malware evolution
Malware Activity
First: 25.03.2026 16:26
Last: 25.03.2026 16:26
Sources 1
About this happening:
The **GlassWorm** malware family has evolved into a **multi-stage** payload chain that steals browser data and crypto-wallet information, increasing risk for **Windows** and **mac...
GlassWorm multi-stage data-theft malware evolution
Malware ActivityAbout this happening: The **GlassWorm** malware family has evolved into a **multi-stage** payload chain that steals browser data and crypto-wallet information, increasing risk for **Windows** and **mac...
LiteLLM Python package hit by network compromise linked to TeamPCP
Incident
First: 25.03.2026 00:29
Last: 25.03.2026 00:29
Sources 1
About this happening:
The **LiteLLM** Python package was compromised on **PyPI** after attackers published malicious **1.82.7** and **1.82.8** releases, putting downstream installs at risk of **credent...
LiteLLM Python package hit by network compromise linked to TeamPCP
IncidentAbout this happening: The **LiteLLM** Python package was compromised on **PyPI** after attackers published malicious **1.82.7** and **1.82.8** releases, putting downstream installs at risk of **credent...
Ghost campaign malicious npm supply-chain operation
Campaign
First: 24.03.2026 16:30
Last: 24.03.2026 16:30
Sources 1
About this happening:
A **malicious npm supply-chain campaign** dubbed **"Ghost campaign"** is using **fake installation logs** to conceal malware delivery, increasing the chance that package installer...
Ghost campaign malicious npm supply-chain operation
CampaignAbout this happening: A **malicious npm supply-chain campaign** dubbed **"Ghost campaign"** is using **fake installation logs** to conceal malware delivery, increasing the chance that package installer...
Graphalgo malicious npm and PyPI RAT downloader packages
Malware Activity
First: 14.02.2026 00:35
Last: 14.02.2026 00:35
Sources 1
About this happening:
**Graphalgo** is a continuing **malware-delivery operation** that uses **fake companies**, **fake job interviews**, and **coding tests** to lure **JavaScript and Python developers...
Graphalgo malicious npm and PyPI RAT downloader packages
Malware ActivityAbout this happening: **Graphalgo** is a continuing **malware-delivery operation** that uses **fake companies**, **fake job interviews**, and **coding tests** to lure **JavaScript and Python developers...
Latest development: 29.04.2026 17:43
North Korean graphalgo operators use fake companies, fake job interviews, and coding tests on job-seeking platforms and social networks to lure developers into downloading GitHub-hosted assessment projects that carry malicious npm or PyPI dependencies and ultimately install a RAT. One front company, Blocmerce, registered an LLC in Florida in August 2025, and related GitHub organizations have been active since June 2025.
Timeline
-
28.11.2025 18:27 1 articles · 6mo ago
spellcheckers first uploaded to PyPI
Untyped PhaseThe malicious PyPI package spellcheckers was first uploaded on November 15, 2025, establishing the package entry point that later delivered a next-stage payload and a remote access trojan (RAT) when installed and run.
Show sources
- Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages — thehackernews.com — 28.11.2025 18:27
-
28.11.2025 18:27 2 articles · 6mo ago
HelixGuard discloses spellcheckers RAT behavior
Initial DisclosureHelixGuard identified the PyPI package spellcheckers as a fake OpenAI Vision spelling checker that connects to an external server, downloads a next-stage payload, and executes a remote access trojan that can receive remote commands and run attacker-controlled Python code via exec().
Show sources
- Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages — thehackernews.com — 28.11.2025 18:27
- Legacy Python Bootstrap Scripts Create Domain-Takeover Risk in Multiple PyPI Packages — thehackernews.com — 28.11.2025 18:27