Hacker News
- Malicious software libraries found in PyPI posing as well known libraries http://www.nbu.gov.sk/skcsirt-sa-20170909-pypi/ 245 comments
Lobsters
- Malicious software libraries in PyPI, posing as well-known libraries http://www.nbu.gov.sk/skcsirt-sa-20170909-pypi/ 3 comments python , security
- Attackers are typosquatting package names in the Python package manager. It may be worthwhile to think of how these attacks could be mitigated in Rust, before we see them. http://www.nbu.gov.sk/skcsirt-sa-20170909-pypi/ 80 comments rust
- Saw this on /r/netsec poisoned libraries http://www.nbu.gov.sk/skcsirt-sa-20170909-pypi/ 4 comments arduino
- malicious software libraries in the official Python package repository http://www.nbu.gov.sk/skcsirt-sa-20170909-pypi/ 57 comments netsec
- PyPi compromised by fake software packages http://www.nbu.gov.sk/skcsirt-sa-20170909-pypi/ 117 comments linux
Linking pages
- When will we learn? https://drewdevault.com/2022/05/12/Supply-chain-when-will-we-learn.html 183 comments
- Devs unknowingly use “malicious” modules snuck into official Python repository | Ars Technica https://arstechnica.com/information-technology/2017/09/devs-unknowingly-use-malicious-modules-put-into-official-python-repository/ 166 comments
- Evolving Threat series — Infiltrating Python’s Software Supply Chain | by Chetan Conikee | ShiftLeft Blog https://medium.com/@chetan_conikee/evolving-threat-series-infiltrating-pythons-software-supply-chain-bbab7bcfdb55 8 comments
- Timeline of Package Dependency Compromises 2011-2017 | Haukes Blog https://www.haukeluebbers.de/blog/2020-01-timeline-of-package-dependency-compromises/ 0 comments
- Ten Malicious Libraries Found on PyPI - Python Package Index https://www.bleepingcomputer.com/news/security/ten-malicious-libraries-found-on-pypi-python-package-index/ 0 comments
- Poison Packages in Python - Sqreen Blog https://blog.sqreen.io/poison-packages-in-python/ 0 comments
Related searches:
Search whole site: site:www.nbu.gov.sk
Search title: skcsirt-sa-20170909-pypi -NBU
See how to search.