Tag: pypi
-
Beware of Typos that May lead to Malicious PyPI Package Installation
Cybersecurity experts have raised alarms over a new threat vector targeting Python developers: typo-squatting on the Python Package Index (PyPI). The … First seen on gbhackers.com Jump to article: gbhackers.com/malicious-pypi-package-installation/
-
New Malicious PyPI Packages Use DLL Sideloading In A Supply Chain Attack
Researchers have discovered that threat actors have been using open-source platforms and codes for several purposes, such as hosting C2 infrastructure… First seen on gbhackers.com Jump to article: gbhackers.com/malicious-pypi-packages-dll-sideloading/
-
New Typosquatting and Repojacking Tactics Uncovered on PyPI
First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/typosquatting-repojacking-tactics/
-
PyPIKampagne: Bedrohungsakteur JuiceLedger greift Lieferketten an
Die Gruppe JuiceLedger scheint ihre Fähigkeiten sehr schnell weiterentwickelt zu haben, was die erfolgreiche Kompromittierung der Lieferkette eines gr… First seen on infopoint-security.de Jump to article: www.infopoint-security.de/pypi-phishing-kampagne-bedrohungsakteur-juiceledger-greift-lieferketten-an/a32102/
-
Check Point warnt erneut vor betrügerischen Paketen auf PyPI
Tags: pypiMithilfe maschineller Lernmodelle konnte Check Point die betrügerischen Pakete, die Vorgaben, Hilfsprogramme zu sein, auf PyPI erkennen. Diese luden i… First seen on infopoint-security.de Jump to article: www.infopoint-security.de/check-point-warnt-erneut-vor-betruegerischen-paketen-auf-pypi/a33859/