PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux

Published: 4 days ago (May 7, 2026 at 05:20 AM EDT)

1 min read

Source: The Hacker News

Overview

Cybersecurity researchers have discovered three packages on the Python Package Index (PyPI) repository that are designed to stealthily deliver a previously unknown malware family called ZiChatBot on Windows and Linux systems.

“While these wheel packages do implement the features described on their PyPI web pages, their true purpose is to covertly deliver malicious files,” — Kaspersky.

Back to Blog

Fake Claude AI website delivers new 'Beagle' Windows malware

!https://www.bleepstatic.com/content/hl-images/2026/02/13/ClaudeAI.png Overview A fraudulent copy of the Claude AI website claude-pro.com offers a malicious “Cl...

Kaspersky suspects Chinese hackers planted a backdoor into Daemon Tools in ‘widespread’ attack

Overview Security researchers at Kaspersky have identified a malicious backdoor planted in the popular Windows disc imaging software, Daemon Tools. Data collec...

TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms

Threat hunters have flagged a previously undocumented Brazilian banking trojan dubbed TCLBANKER that's capable of targeting 59 banking, fintech, and cryptocurre...

AI Is Breaking Two Vulnerability Cultures

A week ago the Copy Failhttps://copy.fail/ vulnerability was disclosed, and Hyunwoo Kim immediately realized that the fixes were insufficient, sharing a patch t...

Overview

Related posts

Fake Claude AI website delivers new 'Beagle' Windows malware

Kaspersky suspects Chinese hackers planted a backdoor into Daemon Tools in ‘widespread’ attack

TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms

AI Is Breaking Two Vulnerability Cultures