—

MAL-2026-6541

Malicious code in pdf-converter-pro (PyPI)

Details

--- _-= Per source details. Do not edit below this line.=-_

## Source: kam193 (5978e6d195a6e1aed1e705347db44516aca76c3a6e40ef1f47fb83087588ee16) Package hides code exfiltrating source code files if run as module.

---

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2026-06-pdf-converter-pro

Reasons (based on the campaign):

- files-exfiltration

- A Telegram webhook is used to send collected data.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / pdf-converter-pro

No fixed version published yet for pdf-converter-pro (pip). Pin to a known-safe version or switch to an alternative.

References

https://bad-packages.kam193.eu/pypi/package/pdf-converter-pro [WEB]