—

MAL-2026-5292

Malicious code in bittensor-burn-watch (PyPI)

Details

--- _-= Per source details. Do not edit below this line.=-_

## Source: kam193 (2d14823eef05f1b18d12e55b6d304d1752bd14f031fec2b118d7f6e41c11728e) The package contains code to steal clipboard content to a predefined remote location. If run in the right way, the code will periodically check the clipboard and if the content matches the pattern, exfiltrates it. Early versions contain this behavior mentioned in the README. The targeted data are likely cryptocurrency secret phrases.

---

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2026-06-clip-logger

Reasons (based on the campaign):

- clipboard-stealing

- crypto-related

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / bittensor-burn-watch

No fixed version published yet for bittensor-burn-watch (pip). Pin to a known-safe version or switch to an alternative.

References

https://bad-packages.kam193.eu/pypi/package/bittensor-burn-watch [WEB]