Embedded Malicious Code Affecting durabletask package, versions [1.4.1][1.4.2][1.4.3]

durabletask is an A Durable Task Client SDK for Python

Affected versions of this package are vulnerable to Embedded Malicious Code that conceals a malicious payload. A malicious actor linked to the @antv appears to have compromised the GitHub account associated with the package and dumped repository secrets to extract a PyPI token; This allowed the attacker to publish tampered versions of the Microsoft durabletask package to PyPI.

According to security reports, the payload is designed to establish communications with external C2 servers and steal credentials from AWS, Azure, GCP, Kubernetes, Vault, and the filesystem. It actively attempts to brute-force password managers like Bitwarden and 1Password, scrapes shell history, and acts as a worm to propagate laterally across AWS SSM and Kubernetes. The malware will persist and leave an infection marker on the system by creating a file at ~/.cache/.sys-update-check or ~/.cache/.sys-update-check-k8s if on Linux. If you find any files in these locations, you have been compromised and should no longer trust the system to be safe.

Notes:

1. This issue is particularly relevant to Linux systems where the payload targets various cloud and environment credentials.
2. The malicious packages (versions 1.4.1, 1.4.2, and 1.4.3) have been quarantined and removed by PyPI.
3. If exposed, all associated cloud credentials, service accounts, and password manager vaults should be rotated immediately.

• GitHub Issue
• Snyk Blog Post