Ethical Hacking News
Recently discovered malware campaign "Hades" has compromised 19 packages on the Python Package Index (PyPI) registry, exploiting a novel attack vector to steal sensitive information from developers and organizations worldwide.
The Python Package Index (PyPI) registry was targeted in a devastating supply chain attack dubbed "Hades". The attack exploits vulnerabilities in trusted sources, demonstrating the increasing sophistication of threat actors. A malicious tool called Bun is used to download and run obfuscated JavaScript payloads on vulnerable systems. The affected packages are an eclectic mix of popular and niche libraries used across various ecosystems. The attack uses a novel technique known as plain-text prompt injection to evade detection by AI-powered security tools. The campaign can replicate and spread laterally across developer networks via SSH or SCP. Even trusted sources like GitHub accounts are not immune to supply chain attacks, as demonstrated by the compromise of "Pythagora-io/gpt-pilot".
The world of cybersecurity has been rocked by yet another devastating supply chain attack, this time targeting the Python Package Index (PyPI) registry. The attack, dubbed "Hades" and attributed to the same lineage as previous campaigns such as Shai-Hulud and Miasma, demonstrates the increasing sophistication and cunning of threat actors in exploiting vulnerabilities in trusted sources.
At the heart of the Hades campaign lies a peculiarly named tool called Bun, which is designed to download and run obfuscated JavaScript payloads on vulnerable systems. This malicious payload not only steals sensitive information such as GitHub secrets and Docker configurations but also sets the stage for more complex lateral attacks, including the exploitation of developer tools.
The attack vector for Hades begins with compromised releases shipped by a group of 19 packages across PyPI, each of which contains a specially crafted *-setup.pth file that triggers during Python startup. This malicious artifact downloads and runs an obfuscated JavaScript payload named _index.js, setting the stage for the theft of sensitive information such as GitHub tokens and Docker configurations.
The affected packages are an eclectic mix of popular and niche libraries used across various ecosystems, including Python, bioinformatics, computational biology, genotype-phenotype analysis, and even developer tools. The inclusion of these seemingly innocuous libraries within the list of compromised packages serves to underscore the scope and adaptability of this supply chain attack.
The use of obfuscated JavaScript payloads is a hallmark of sophisticated malware campaigns, designed to evade detection by AI-powered security tools. In the case of Hades, these payload-based attacks leverage a novel technique known as plain-text prompt injection to deceive Large Language Model (LLM)-based package analysis tools into classifying the malicious packages as safe.
Furthermore, the Hades campaign is notable for its ability to replicate and spread laterally across developer networks via SSH or SCP. Additionally, it targets GitHub repositories in order to extract organization secrets using GitHub Actions runners if the harvested GitHub token has appropriate write permissions.
In a chilling twist, an unknown attacker compromised the GitHub account linked to "Pythagora-io/gpt-pilot," a popular open-source AI developer tool. This campaign serves as a stark reminder that even trusted sources are not immune to the ravages of supply chain attacks.
The implications of this Hades campaign extend far beyond the realm of cybersecurity, illuminating the critical role that AI-powered tools play in detecting and preventing such threats. As security professionals and developers alike navigate the increasingly complex world of supply chain attacks, it is essential to stay informed about the latest vulnerabilities and exploits.
In order to safeguard against software vulnerabilities discovered by AI models, organizations must prioritize the implementation of robust security measures, including regular vulnerability scans, secure configuration practices, and the deployment of AI-powered threat detection tools. The consequences of failure are too great to ignore; the Hades campaign serves as a stark reminder that the world is rapidly evolving into an era where supply chain attacks pose an existential threat.
Related Information:
https://www.ethicalhackingnews.com/articles/Hades-PyPI-Attack-Unpacking-the-Sophisticated-Supply-Chain-Malware-Campaign-ehn.shtml
https://thehackernews.com/2026/06/hades-pypi-attack-19-packages-poisoned.html
Published: Wed Jun 10 15:15:13 2026 by llama3.2 3B Q4_K_M
