Malware & Threats

Developers Targeted With Malware Disguised as DeepSeek Package

Python developers looking to integrate DeepSeek into their projects were targeted with malicious packages delivered through PyPI.

Eduard Kovacs

Published

February 4, 2025

DeepSeek malware generation

Threat researchers have come across two malicious Python packages offered as resources for integrating the Chinese AI model DeepSeek into software projects.

The malicious packages, named ‘deepseeek’ and ‘deepseekai’, were uploaded to the Python Package Index (PyPI) package repository by a user named ‘bvk’ on January 29.

The fake DeepSeek packages were detected in minutes by cybersecurity firm Positive Technologies and PyPI administrators removed them within an hour of their publishing.

However, they were still downloaded more than 200 times before they were removed, including over 100 times from the United States.

An analysis showed that the fake DeepSeek packages hid malicious functions designed to collect user and system data, as well as environment variables.

“Environment variables often contain sensitive data required for applications to run, for example, API keys for the S3 storage service, database credentials, and permissions to access other infrastructure resources,” Positive Technologies noted.

Advertisement. Scroll to continue reading.

The malware is designed to send the stolen data to a command and control server through the Pipedream integration platform.

“It’s worth mentioning that the script was written with the help of an AI assistant, which is indicated by the characteristic comments explaining the lines of code,” the security firm said.

The attack was likely aimed at developers, ML engineers or AI enthusiasts, according to Positive Technologies.

“Cybercriminals always monitor the current trends and will try to take advantage of them at the right moment. In this case, we analyzed a relatively harmless attack, although due to the hype around DeepSeek, there could be a lot more victims if the malicious package activity stayed hidden for longer,” the company said.

Security firm ESET has also seen scams and malware delivery leveraging DeepSeek’s newly gained notoriety. In one case, a fake DeepSeek website delivered digitally signed malware to users who clicked a ‘download now’ button.

In this article:DeepSeek, malware, PyPI, Python

Cybercrime

OnyxC2 Stealer Offers Cybercriminals Enterprise-Grade Theft for $250 a Month

Researchers say the OnyxC2 malware targets more than 200 applications and extensions while evading detection through encrypted payloads, DLL sideloading, and in-memory execution techniques.

Kevin Townsend2 days ago

ICS/OT

Siemens Says Desigo CC Files Flagged as Malware by Security Engines

A PowerShell script included in patch files appears to be triggering false positives by multiple security engines.

Eduard Kovacs2 days ago

Identity & Access

Infostealers Turn Millions of Devices Into Credential Theft Machines

As attackers increasingly favor stolen credentials over exploits, infostealers have become a primary source of access for ransomware and other cybercrime operations.

Kevin Townsend3 days ago

Malware & Threats

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

The most recent variants of the self-propagating attacks are named Miasma and Hades.

Ionut Arghire4 days ago

Artificial Intelligence

Russia-Linked ‘GreyVibe’ Attackers Use AI to Supercharge Cyberattacks

Researchers warn GreyVibe’s extensive use of ChatGPT, Gemini, and other AI tools offers a glimpse into how future cybercriminal and state-aligned groups will operate.

Kevin TownsendMay 28, 2026