Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
From PyPI to the Dark Marketplace: How a Malicious Package Fuels the Sale of Telegram Identities
Malware and Vulnerabilities
April 18, 2025
Imperva
Three malicious Python packages—Quicolor, QuickColors and ColorYi—were discovered on PyPI, masquerading as legitimate color formatting libraries. These packages exfiltrate Telegram Desktop's tdata folder.
Read More
Quicolor
QuickColors
ColorYi
PyPI
Publisher
Previous
Critical Missing Authentication Vulnerability in Yokoga ...
Malware and Vulnerabilities
Next
CVE-2024-53141: Linux Kernel Flaw Enables Privilege Esc ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/d12a_shutterstock_2269120253.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/d843_shutterstock_2483133597.jpg)
