PyPI revokes tokens stolen in the GhostAction attack

The Python Software Foundation team reported that it has revoked all PyPI tokens stolen during the GhostAction supply chain attack that occurred in early September. The specialists emphasized that the attackers did not use the tokens to publish malware.

Recall that in early September, researchers from GitGuardian discovered that malicious GitHub Actions workflows (for example, FastUUID) were attempting to steal PyPI tokens by sending them to a remote server. The GitGuardian team emailed the PyPI security staff the same day, but the message ended up in spam, delaying the response to the incident until September 10.

According to GitGuardian’s estimate, more than 3,300 secrets were stolen during the GhostAction attack, including PyPI, npm, DockerHub, and GitHub tokens, Cloudflare and AWS API keys, and database credentials.

As soon as GitGuardian understood the full scope of what was happening, the company opened issues on GitHub in more than 570 affected repositories and notified the security teams at GitHub, npm, and PyPI about the incident.

Many project maintainers independently rotated their PyPI tokens, reverted changes, or deleted the affected workflows after receiving the notifications.

Although the PyPI team reports that it found no evidence of PyPI repositories being compromised, it decided to revoke all affected tokens. The specialists also contacted the owners of projects impacted by the attack to help them secure their accounts.

As PyPI administrator Mike Fiedler reports, PyPI package maintainers who use GitHub Actions are advised to replace long-lived tokens with Trusted Publishers short-lived tokens, which can help protect against similar attacks. He also urged everyone to log into their accounts and review their history for any suspicious activity.

“It appears the attackers targeted a wide range of repositories—many of which contained PyPI tokens stored as GitHub Secrets—by modifying their workflows to send the tokens to external servers. Although the attackers successfully stole some tokens, it seems they did not use them on PyPI,” Fidler writes.

29.01.2025 — Google to disable Sync in older Chrome versions

07.03.2025 — YouTube warns of scam video featuring its CEO

20.03.2025 — 8,000 vulnerabilities identified in WordPress ecosystem in 2024

07.02.2025 — 768 vulnerabilities were exploited by hackers in 2024

12.02.2025 — 2.8 million IP addresses used to brute-force network devices

01.04.2025 — Hackers abuse MU plugins to inject malicious payloads to WordPress

01.02.2025 — Critical RCE vulnerability fixed in Cacti

03.02.2025 — PyPI introduces a project archival system to combat malicious updates

18.03.2025 — Black Basta ransomware group developed its own automated brute-forcing framework

27.01.2025 — Zyxel firewalls reboot due to flawed update

04.04.2023 — Serpent pyramid. Run malware from the EDR blind spots!

01.06.2022 — Cybercrime story. Analyzing Plaso timelines with Timesketch

03.06.2022 — Vulnerable Java. Hacking Java bytecode encryption

02.06.2022 — Blindfold game. Manage your Android smartphone via ABD

15.12.2022 — What Challenges To Overcome with the Help of Automated e2e Testing?

04.04.2022 — Fastest shot. Optimizing Blind SQL injection

15.02.2022 — Reverse shell of 237 bytes. How to reduce the executable file using Linux hacks

12.01.2022 — First contact. Attacks against contactless cards

20.04.2023 — Sad Guard. Identifying and exploiting vulnerability in AdGuard driver for Windows

08.06.2023 — Croc-in-the-middle. Using crocodile clips do dump traffic from twisted pair cable

29.01.2025 —
Google to disable Sync in older Chrome versions

07.03.2025 —
YouTube warns of scam video featuring its CEO

20.03.2025 —
8,000 vulnerabilities identified in WordPress ecosystem in 2024

07.02.2025 —
768 vulnerabilities were exploited by hackers in 2024

12.02.2025 —
2.8 million IP addresses used to brute-force network devices

01.04.2025 —
Hackers abuse MU plugins to inject malicious payloads to WordPress

01.02.2025 —
Critical RCE vulnerability fixed in Cacti

03.02.2025 —
PyPI introduces a project archival system to combat malicious updates

18.03.2025 —
Black Basta ransomware group developed its own automated brute-forcing framework

27.01.2025 —
Zyxel firewalls reboot due to flawed update

04.04.2023 —
Serpent pyramid. Run malware from the EDR blind spots!

01.06.2022 —
Cybercrime story. Analyzing Plaso timelines with Timesketch

03.06.2022 —
Vulnerable Java. Hacking Java bytecode encryption

02.06.2022 —
Blindfold game. Manage your Android smartphone via ABD

15.12.2022 —
What Challenges To Overcome with the Help of Automated e2e Testing?

04.04.2022 —
Fastest shot. Optimizing Blind SQL injection

15.02.2022 —
Reverse shell of 237 bytes. How to reduce the executable file using Linux hacks

12.01.2022 —
First contact. Attacks against contactless cards

20.04.2023 —
Sad Guard. Identifying and exploiting vulnerability in AdGuard driver for Windows

08.06.2023 —
Croc-in-the-middle. Using crocodile clips do dump traffic from twisted pair cable