URL has been copied successfully!
Malicious PyPI packages abuse Gmail, websockets to hijack systems
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Malicious PyPI packages abuse Gmail, websockets to hijack systems


Tags: , ,

Seven malicious PyPi packages were found using Gmail’s SMTP servers and WebSockets for data exfiltration and remote command execution.

First seen on bleepingcomputer.com

Jump to article: www.bleepingcomputer.com/news/security/malicious-pypi-packages-abuse-gmail-websockets-to-hijack-systems/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Hackers Weaponize Security Testing By Weaponizing npm, PyPI, Ruby Exploit Packages
  2. Hackers Hide Malware in Fake DeepSeek PyPI Packages
  3. New Cyber Attack Targets PyPI Users to Steal Cloud Tokens and Sensitive Data
  4. From PyPI to the Dark Marketplace: How a Malicious Package Fuels the Sale of Telegram Identities