Hacker News
- Malicious PyPI packages stealing credit cards and injecting code https://jfrog.com/blog/malicious-pypi-packages-stealing-credit-cards-injecting-code/ 226 comments
- Malicious PyPI Packages Stealing Credit Cards and Injecting Code https://jfrog.com/blog/malicious-pypi-packages-stealing-credit-cards-injecting-code/ 23 comments programming
- Malicious PyPI Packages Stealing Credit Cards and Injecting Code - Technical Analysis https://jfrog.com/blog/malicious-pypi-packages-stealing-credit-cards-injecting-code/ 24 comments netsec
Linking pages
- Software downloaded 30,000 times from PyPI ransacked developers’ machines | Ars Technica https://arstechnica.com/gadgets/2021/07/malicious-pypi-packages-caught-stealing-developer-data-and-injecting-code/ 46 comments
- Let's talk about supply chain attacks and backdoored dependencies https://kerkour.com/supply-chain-attacks-and-backdoored-dependencies 26 comments
- Malicious packages in PyPI use stealthy exfiltration methods https://jfrog.com/blog/python-malware-imitates-signed-pypi-traffic-in-novel-exfiltration-technique/ 6 comments
- Malicious packages in npm enable theft of Discord tokens https://jfrog.com/blog/malicious-npm-packages-are-after-your-discord-tokens-17-new-packages-disclosed/ 2 comments
- PyPI packages caught stealing credit card numbers, Discord tokens https://www.bleepingcomputer.com/news/security/pypi-packages-caught-stealing-credit-card-numbers-discord-tokens/ 0 comments
- How to identify and avoid malicious code in your software supply chain https://jfrog.com/blog/detecting-known-and-unknown-malicious-packages-and-how-they-obfuscate-their-malicious-code/ 0 comments
Linked pages
- Malicious packages in PyPI use stealthy exfiltration methods https://jfrog.com/blog/python-malware-imitates-signed-pypi-traffic-in-novel-exfiltration-technique/ 6 comments
- The Use Of Typosquatting to Insert Vulnerable Code Into Packages https://www.vdoo.com/blog/leveraging-typosquatting-crypto-mining 1 comment
- GitHub - dashingsoft/pyarmor: A tool used to obfuscate python scripts, bind obfuscated scripts to fixed machine or expire obfuscated scripts. https://github.com/dashingsoft/pyarmor 0 comments
- http://pepy.tech/ 0 comments
Related searches:
Search whole site: site:jfrog.com
Search title: Python developers are being targeted with malicious packages on PyPI
See how to search.