A major software supply chain attack<\/a> has compromised the popular Python package\u00a0elementary-data, exposing thousands of developers to massive credential theft.<\/p>\n Threat actors successfully pushed a malicious version, 0.23.3, to the Python Package Index (PyPI) and poisoned the matching Docker images on the\u00a0GitHub<\/a><\/span> Container Registry (GHCR).<\/p>\n With over one million monthly downloads, this widely used dbt data observability tool represents a highly lucrative target for cybercriminals.<\/p>\n As detailed by StepSecurity researchers, the attack did not rely on stolen developer passwords.<\/p>\n Instead, hackers exploited a script-injection vulnerability<\/a> in the project\u2019s GitHub Actions pipeline.<\/p>\n A newly created GitHub account posted a malicious script in an open pull request comment.<\/p>\n Because the automated workflow failed to process this comment safely, the system executed the code.<\/p>\n Using the workflow\u2019s built-in access token, the attacker forged a verified release commit and triggered the official publishing process without ever touching the main codebase.<\/p>\n Once installed, the compromised package drops a single malicious file named\u00a0elementary.pth\u00a0into the environment.<\/p>\n Since Python automatically runs\u00a0.pth\u00a0files whenever the interpreter starts, the malware<\/a> activates immediately on any machine where the package is installed.<\/p>\n According to threat intelligence reports, the payload is a sophisticated, three-stage information stealer that actively hunts for critical developer secrets and credentials.<\/p>\n It systematically targets and steals:<\/p>\n All stolen data is compressed into an archive and silently sent to a remote, attacker-controlled command-and-control server.<\/p>\n To check if you are impacted, StepSecurity advises<\/a> reviewing your installed builds.<\/p>\n The compromised version of the\u00a0elementary-data\u00a0PyPI package is 0.23.3. However, users are safe if they use version 0.23.4 or the earlier 0.23.2.<\/p>\n Similarly, the affected Docker image is\u00a0ghcr.io\/elementary-data\/elementary:0.23.3, while version 0.23.4 (or 0.23.2) is clean.<\/p>\n Furthermore, if you are using the\u00a0latest\u00a0Docker image<\/a> tag with a digest ending in\u00a0634255, your environment is compromised.<\/p>\n StepSecurity warns that you must ensure your\u00a0latest\u00a0tag is updated to the newly provided clean build.<\/p>\n Thanks to the quick action of community members\u00a0Crisperik\u00a0and\u00a0H-Max, who spotted the malicious code, the maintainers were alerted within hours.<\/p>\n The Elementary team immediately removed the dangerous 0.23.3 version from PyPI and GHCR, releasing a clean 0.23.4 replacement the same day.<\/p>\n Developers who were exposed to the malicious update must fully rotate all credentials, API keys, and database passwords on the affected machines.<\/p>\n Enable two-factor authentication<\/a> on all vital infrastructure and pin future package dependencies to specific, verified versions to stop automatic malicious updates.<\/p>\n Follow us on Google News<\/a>, LinkedIn<\/a>, and X<\/a> for daily cybersecurity updates. Contact us<\/a> to feature your stories.<\/strong><\/p>\n The post Popular PyPI Package With 1 Million Monthly Downloads Hacked to Inject Malicious Scripts<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\n![\"the](\"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEj3ZUB7Bf9pa9dvF1duv1DN9jzTlBudvVHn7-6Li91RINTKcLeJ3QbLgVQRxSWWjE1Mf57cbn3IIyYW7IrxrzEX1ldHjKzkaIoFeox1CKIB0rz-aI90aHtz9jRBjqWIdxu3D_4srMgijxbJk8MIiM5mIOptO446XIRvHmmFiFupgcIUUzSo_2dNX2zx118\/s1600\/Screenshot%25202026-04-28%2520104910%2520%25281%2529.webp?ssl=1\")
Information Stealer Payload<\/strong><\/h2>\n
\n
Affected Versions<\/strong><\/h2>\n
![\"The](\"https:\/\/i0.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgu93HUaT54u9oGALIZDewxaHCvJsAIFlSy3r6VffiJu_GqyboqkS9LW2g7_GeWNoug5hu57vjcMW-SMbDrsCVN2d2Gw-tXZIu0dP1eOicub7_OGCE3s9G_sgvCJWKVgIT-iq9yMlgXXzEajD6sMFl443o-sVuEW5wFBwaMsVOzxRYcqhJUBchF5KCO6TY\/s1600\/Screenshot%25202026-04-28%2520104951%2520%25281%2529.webp?ssl=1\")
![\"The](\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEjkGLlHgRst1M4JFmG5sNgtzxAMqPJngS1pd0GgYNbnVAj_4NcL5q07RKok7imhhHYhyphenhyphenIXPjSkoI9Exi1CxWlObzfgI7CospEKnKcauQkw6xrWjNipTwjFHqLESSU59rBW8YHCnM75GBUvLoFOKA6Ip_w4uiVCdHRkVxctkAXbGrWfRG_5XcI_PNhBOkSI\/s1600\/Screenshot%202026-04-28%20104927%20%281%29.web\")
![\"The](\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEju4v8zzTIhrYJdnT_Ljwjf4P-7Ut01kCSnHMuyHPuV40LqOKQto0sj16X5k1-3-m4-QZnYt3L7su2O6WES6kbU4xyjGtwpFmBzYWa5-5KV36GubQc4RzCUuuRFTXW9IyxWwf4h9ITUxGFFSDojITNDXU8iElQHcRv2YOqo-TOShSYog2gD90d9PqDmfWo\/s1600\/Screenshot%202026-04-28%20104941%20%281%29.web\")