Dormant PyPI Package Compromised to Spread Nova Sentinel Malware

February 23, 2024

A dormant package available on the Python Package Index (PyPI) repository was updated nearly after two years to propagate an information stealer malware called Nova Sentinel.
The package, named django-log-tracker, was first published to PyPI in April 2022, according to software supply chain security firm Phylum, which detected an anomalous update to the library on February 21,

Tags
February 23, 2024

Related Articles

Critical Flaw in Cisco Secure Email and Web Manager Lets Attackers Bypass Authentication

June 16, 2022

Vietnamese Cybercriminals Targeting Facebook Business Accounts with Malvertising

September 4, 2023

CoralRaider Malware Campaign Exploits CDN Cache to Spread Info-Stealers

6 days ago

Critical Security Flaws Identified in CODESYS ICS Automation Software

June 27, 2022
© Copyright 2024, All Rights Reserved  |  PlanetJon
Back to top button