Hacker News
- Malicious Python Code Gains Execution https://blog.phylum.io/how-malicious-python-code-gains-execution/ 0 comments
- PyPI Suspends New User and Project Creation in Wake of Malware Campaign https://blog.phylum.io/typosquatting-campaign-targets-python-developers/ 7 comments
- Crypto-Themed NPM Packages Found Delivering Stealthy Malware https://blog.phylum.io/crypto-themed-npm-packages-found-delivering-stealthy-malware/ 2 comments
- Rust Malware Staged on Crates.io https://blog.phylum.io/rust-malware-staged-on-crates-io/ 58 comments
- Mischievous NPM Publications https://blog.phylum.io/phylum-discovers-mischievous-npm-publications/ 25 comments
Lobsters
- Rust Malware Staged on Crates.io https://blog.phylum.io/rust-malware-staged-on-crates-io/ 5 comments rust , security
- Malicious Actors Use Unicode Support in Python to Evade Detection https://blog.phylum.io/malicious-actors-use-unicode-support-in-python-to-evade-detection 6 comments python , security
- Unintended Consequences of Open Source Sustainability Platforms https://blog.phylum.io/digital-detritus-unintended-consequences-of-open-source-sustainability-platforms/ 3 comments programming
- Malicious npm Package Caught Hijacking ERC20 Contracts to Drain USDT https://blog.phylum.io/malicious-npm-package-caught-hijacking-erc20-contracts-to-drain-usdt/ 9 comments cryptocurrency
- PyPI Suspends New User Registration In Wake of Large Typosquatting Campaign https://blog.phylum.io/typosquatting-campaign-targets-python-developers/ 21 comments netsec
- Ongoing malware laced developer job interviews https://blog.phylum.io/smuggling-malware-in-test-code/ 53 comments programming
- Ongoing Malware Laced Developer Job Interviews https://blog.phylum.io/smuggling-malware-in-test-code/ 8 comments netsec
- npm Package Found Delivering RAT Through Signed Microsoft Executable https://blog.phylum.io/npm-package-found-delivering-sophisticated-rat/ 13 comments netsec
- Red team or adversary? Hunting Supply Chain Threat Actors Targeting A Major Financial Institution. https://blog.phylum.io/encrypted-npm-packages-found-targeting-major-financial-institution/ 5 comments netsec
- Dozens of npm Packages Caught Attempting to Deploy Reverse Shell https://blog.phylum.io/dozens-of-npm-packages-caught-attempting-to-deploy-reverse-shell/ 7 comments netsec
- Nascent Malware Campaign Targets npm, PyPI, and RubyGems Developers https://blog.phylum.io/malware-campaign-targets-npm-pypi-and-rubygems-developers/ 3 comments netsec
- Attackers Repurposing existing Python-based Malware for Distribution on NPM https://blog.phylum.io/attackers-repurposing-existing-python-based-malware-for-distribution-on-npm 24 comments javascript
- Attackers are hiding malware in minified packages distributed to NPM https://blog.phylum.io/phylum-discovers-npm-package-mathjs-min-contains-discord-token-grabber 132 comments javascript
- Malicious Actors Use Unicode Support in Python to Evade Detection https://blog.phylum.io/malicious-actors-use-unicode-support-in-python-to-evade-detection 71 comments python
- Malicious Actors Use Unicode Support in Python to Evade Detection https://blog.phylum.io/malicious-actors-use-unicode-support-in-python-to-evade-detection 8 comments programming
- Malicious Actors Use Unicode Support in Python to Evade Detection https://blog.phylum.io/malicious-actors-use-unicode-support-in-python-to-evade-detection 29 comments netsec
- 520 Malware Packages Published to PyPI in Ongoing Attack https://blog.phylum.io/phylum-discovers-another-attack-on-pypi 45 comments netsec
- Active Malware Campaign Targeting Popular Python Packages Underway https://blog.phylum.io/phylum-discovers-revived-crypto-wallet-address-replacement-attack 38 comments netsec
- Ransomware being published to PyPI in ongoing campaign https://blog.phylum.io/phylum-detects-active-typosquatting-campaign-in-pypi 41 comments python
- Ransomware currently being published to PyPI in ongoing campaign https://blog.phylum.io/phylum-detects-active-typosquatting-campaign-in-pypi 9 comments programming
- Ongoing Typosquatting Campaign Publishing Malware to PyPI https://blog.phylum.io/phylum-detects-active-typosquatting-campaign-in-pypi 11 comments netsec
- Disrupting an attacker publishing malware to PyPI https://blog.phylum.io/disrupting-a-software-supply-chain-threat-actor-building-a-botnet 3 comments programming
- Disrupting an attacker publishing malware to PyPI https://blog.phylum.io/disrupting-a-software-supply-chain-threat-actor-building-a-botnet 17 comments netsec
- Malicious Python Packages Replace Crypto Addresses in Developer Clipboards https://blog.phylum.io/pypi-malware-replaces-crypto-addresses-in-developers-clipboard 25 comments netsec
- Python Malware Replaces Crypto Addresses in Developer Clipboards https://blog.phylum.io/pypi-malware-replaces-crypto-addresses-in-developers-clipboard 54 comments cryptocurrency
- Python Malware Replaces Crypto Addresses in Developer Clipboards https://blog.phylum.io/pypi-malware-replaces-crypto-addresses-in-developers-clipboard 31 comments programming
- Phylum Discovers Dozens More PyPI Packages Attempting to Deliver W4SP Stealer in Ongoing Supply-Chain Attack https://blog.phylum.io/phylum-discovers-dozens-more-pypi-packages-attempting-to-deliver-w4sp-stealer-in-ongoing-supply-chain-attack 26 comments python
- Active Typosquatting Campaign Targeting NPM Developers https://blog.phylum.io/phylum-detects-active-typosquatting-campaign-targeting-npm-developers 23 comments programming
- NPM Malware Targeting HubSpot’s Bucky Client https://blog.phylum.io/npm-malware-targeting-hubspots-bucky-client 5 comments netsec
- The Anatomy of a Malicious Package https://blog.phylum.io/malicious-javascript-code-in-npm-malware 3 comments programming
- Using code entropy to help identify malware. https://blog.phylum.io/detecting-obfuscated-malicious-code 7 comments programming
- Using Spark and Rust build distributed and flexible analytics pipelines https://blog.phylum.io/spark-and-rust-how-to-build-fast-distributed-and-flexible-analytics-pipelines 6 comments rust
- An analysis of author behavior during Hacktoberfest 2020 https://blog.phylum.io/spooky-occurrence-open-source-hacktoberfest-2020 2 comments programming
- Detecting Potential Bad Actors in OSS Contributions https://blog.phylum.io/author-risk-bad-actors-in-github 4 comments netsec
- The Anatomy of a Malicious Package https://blog.phylum.io/malicious-javascript-code-in-npm-malware/ 9 comments netsec