—

MAL-2026-5333

Malicious code in nerfstudio-gs (PyPI)

Details

--- _-= Per source details. Do not edit below this line.=-_

## Source: kam193 (523b928ceb73227e96f02eb85783222da17d0e716c9c7012b4cbcafd1e787f58) During installation or Python setup (via PTH file), the code exfiltrated all kinds of sensitive data, including env variables, browser's data, SSH keys, data from cryptocurrency extensions, shell history files, etc.

---

Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers.

Campaign: 2026-06-nerfstudio-gs

Reasons (based on the campaign):

- dependency-confusion

- exfiltration-credentials

- exfiltration-browser-data

- exfiltration-crypto

- exfiltration-env-variables

- files-exfiltration

- exfiltration-ssh-keys

- The package overrides the install command in setup.py to execute malicious code during installation.

- abuses-pth

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / nerfstudio-gs

No fixed version published yet for nerfstudio-gs (pip). Pin to a known-safe version or switch to an alternative.

References

https://bad-packages.kam193.eu/pypi/package/nerfstudio-gs [WEB]