Python

Two malicious Python Package Index (PyPI) packages: Zebo-0.1.0 and Cometlogger-0.1, have been identified, posing a significant threat to user security. These packages, uploaded in November 2024, exploit unsuspecting developers and users, aiming to steal sensitive data such...

Hackers often target PyPI packages due to their extensive user base and open-source nature. This helps threat actors in distributing malicious code within an open-source ecosystem. The decentralized nature of PyPI makes it challenging for...

There are a variety of Python security tools are using in the cybersecurity industries and python is one of the widely used programming languages to develop penetration testing tools. For anyone who is involved in...

An automated risk detection system identified a typosquatting campaign targeting popular Python libraries on PyPI. In two waves with a 20-hour break, the attack deployed over 500 variations with typos in names like requests,...

A new variant of VileRAT is being distributed through fake software pirate websites to infect Windows systems on a large scale. This Python-based VileRAT malware family is believed to be specific to the Evilnum threat group,...

A cluster of malicious Python projects has been identified in PyPI, the official Python PyPI package repository, which targets both Windows and Linux systems and often deploys a custom backdoor. In certain instances, the ultimate payload consists...

Recently, security researchers have discovered that cybercriminals are distributing harmful Python packages that are camouflaged as genuine obfuscation tools, but in reality, they contain malicious code. These packages are being used by threat actors...

In the open-source ecosystem, shadows shift as collaboration succeeds, attracting both novices and skilled threat actors. A rising threat has been evolving and sharpening its tools in recent months. Checkmarx Supply Chain Security researchers have...

JavaScript and Python both have their own package repositories called npm (Node Package Manager) and PyPi (Python Package Index), respectively. They act as key centers for publishing and exchanging reusable code libraries and packages by...

ReversingLabs spotted "VMConnect" in early August, a malicious supply chain campaign with two dozen rogue Python packages on PyPI. It's been observed that these packages mimicked the following known open-source Python tools:- vConnector eth-tester Databases Cybersecurity researchers at ReversingLabs...