Guy Korolevski

JFrog Security Researcher

Guy is a malware security researcher at JFrog with over 6 years of specialized experience in software supply chain attacks, advanced malware analysis, and automated threat detection. Before assuming this role, he gained valuable insights as a Security Researcher and Software Engineer, holding a Bachelor of Science degree in Physics.

The Latest From Guy Korolevski

Multi-Stage Malware Attack on PyPI: “chimera-sandbox-extensions” Malicious Package Threatens Chimera Sandbox Users

June 10, 2025 | 8 min read

Open-source package repositories like the Python Package Index (PyPI) play a crucial role in software development. However, these platforms are also potential targets for malicious actors attempting to exploit application software vulnerabilities. The JFrog Security Research team regularly monitors open source software repositories using advanced automated tools, in order to detect malicious packages. In cases…
Read More
Malicious PyPI Package Hijacks MEXC Orders, Steals Crypto Tokens

April 15, 2025 | 10 min read

The JFrog Security Research team regularly monitors open source software repositories using advanced automated tools, in order to detect malicious packages. In cases of potential supply chain security threats, our research team reports any malicious packages that were discovered to the repository’s maintainers in order to have them removed. This blog provides an analysis of…
Read More

Guy Korolevski

The Latest From Guy Korolevski

Multi-Stage Malware Attack on PyPI: “chimera-sandbox-extensions” Malicious Package Threatens Chimera Sandbox Users

Malicious PyPI Package Hijacks MEXC Orders, Steals Crypto Tokens