Mini Shai-Hulud Hades Vulnerability Affects Multiple Python Package Versions on PyPI

Anuj June 11, 2026
www.news4hackers.com-mini-shai-hulud-hades-vulnerability-affects-multiple-python-package-versions-on-pypi-mini-shai-hulud-hades-vulnerability-affects-multiple-python-package-versions-on-pypi
Post Views: 12

A newly identified strain of the Mini Shai-Hulud supply chain malware, labeled “Hades,” has been detected in 23 PyPI package versions targeting bioinformatics and artificial intelligence-themed projects, according to reports.

Discovery and Initial Findings

The discovery was initially disclosed by Socket on Sunday, following the identification of 37 malicious PyPI artifacts across 19 packages focused on bioinformatics software. The variant derives its name from Hades and Greek mythology-themed elements within the GitHub repositories used for data exfiltration.

Operational Framework

Hades follows the operational framework of TeamPCP’s Mini Shai-Hulud malware but differs in its focus. While the original Mini Shai-Hulud targeted npm and PyPI packages, and a separate variant named Miasma concentrated on npm, Hades is specifically tailored for the PyPI ecosystem.

Delivery Methods

The initial batch of 37 malicious wheel artifacts utilized a.pth startup hook (*-setup.pth) for deployment. Additional analysis revealed that some packages in the latest wave employ a similar delivery method, while others embed malicious execution paths within compiled .abi.so extensions.

First Delivery Approach

In these instances, the JavaScript payload activates during Python package imports, making detection more challenging as the malicious code remains hidden within .py files.

Second Delivery Approach

A third delivery approach was observed in the malicious package langchain-core-mcp, which uses the .pth startup hook to search sys.path for the JavaScript payload without including it in the package itself. This suggests a potential split delivery strategy where the payload is installed separately.

Payload Analysis

The _index.js stealer payload in the latest attacks includes a prompt designed to target large language model (LLM) analysis tools. The code instructs the LLM to assist with the development of biological and nuclear weapons, aiming to provoke a refusal response from the AI system.

Researchers noted that while traditional detection methods such as YARA rules, entropy checks, and behavioral analysis remain effective, the technique presents a practical evasion tactic against naive LLM-first triage systems.

Compromised Packages

The Hades campaign has compromised legitimate bioinformatics tools such as embiggen, ensmallen, gpsea, phenopacket-store-toolkit, ppkt2synergy, and pyphetools. Attackers also created typosquatted packages, including langchain-core-mcp, rsquests, tlask, rlask, and others with AI-related themes.

  • embiggen
  • ensmallen
  • gpsea
  • phenopacket-store-toolkit
  • ppkt2synergy
  • pyphetools
  • langchain-core-mcp
  • rsquests
  • tlask
  • rlask

Implications and Security Measures

The incident highlights ongoing efforts by threat actors to exploit package repositories for supply chain attacks, emphasizing the need for enhanced security measures in software distribution channels.



About Author

Anuj

See author's posts

More Stories

www.news4hackers.com-ivanti-releases-critical-patches-for-sentry-vulnerabilities-to-enhance-security-ivanti-releases-critical-patches-for-sentry-vulnerabilities-to-enhance-security

Ivanti Releases Critical Patches for Sentry Vulnerabilities to Enhance Security

Anuj June 11, 2026
www.news4hackers.com-fbi-uncovers-ties-between-china-based-organized-crime-groups-and-southeast-asian-scams-fbi-uncovers-ties-between-china-based-organized-crime-groups-and-southeast-asian-scams

FBI Uncovers Ties Between China-Based Organized Crime Groups and Southeast Asian Scams

Anuj June 11, 2026
www.news4hackers.com-mini-shai-hulud-hades-vulnerability-affects-multiple-python-package-versions-on-pypi-mini-shai-hulud-hades-vulnerability-affects-multiple-python-package-versions-on-pypi-1

Top Security Measures for Effective Identity Verification Online

Anuj June 11, 2026

Latest Cyber Security News

www.news4hackers.com-operation-mule-hunt-2-0-uncovers-massive-44-crore-cyber-scam-in-gujarat-india-operation-mule-hunt-2-0-uncovers-massive-44-crore-cyber-scam-in-gujarat-india-1

X-Square-Robot-Open-Sources-Autonomous-Data-Collection-Framework-for-Free-Use,

Anuj June 11, 2026
www.news4hackers.com-operation-mule-hunt-2-0-uncovers-massive-44-crore-cyber-scam-in-gujarat-india-operation-mule-hunt-2-0-uncovers-massive-44-crore-cyber-scam-in-gujarat-india

Operation Mule Hunt 2.0 Uncovers Massive ₹44 Crore Cyber Scam in Gujarat India

Anuj June 11, 2026
www.news4hackers.com-beware-of-scammers-using-tiktok-instagram-for-vidar-infostealer-malware-spreads-beware-of-scammers-using-tiktok-instagram-for-vidar-infostealer-malware-spreads

Beware of Scammers Using TikTok & Instagram for Vidar Infostealer Malware Spreads

Anuj June 11, 2026
www.news4hackers.com-ivanti-releases-critical-patches-for-sentry-vulnerabilities-to-enhance-security-ivanti-releases-critical-patches-for-sentry-vulnerabilities-to-enhance-security

Ivanti Releases Critical Patches for Sentry Vulnerabilities to Enhance Security

Anuj June 11, 2026
www.news4hackers.com-china-linked-jdy-botnet-expands-targeting-us-military-networks-cybersecurity-threats--china-linked-jdy-botnet-expands-targeting-us-military-networks-cybersecurity-threats-

China-Linked JDY Botnet Expands Targeting US Military Networks Cybersecurity Threats,

Anuj June 11, 2026
en_USEnglish
en_USEnglish