packages
-
Rogue NuGet Packages Infect .NET Developers with Crypto-Stealing Malware
The NuGet repository is the target of a new “sophisticated and highly-malicious attack” aiming to infect .NET developer systems with…
Read More » -
BATLOADER Malware Uses Google Ads to Deliver Vidar Stealer and Ursnif Payloads
Cyber Threat Intelligence The malware downloader known as BATLOADER has been observed abusing Google Ads to deliver secondary payloads like…
Read More » -
Experts Identify Fully-Featured Info Stealer and Trojan in Python Package on PyPI
Software Security / CodingSec A malicious Python package uploaded to the Python Package Index (PyPI) has been found to contain…
Read More » -
Python Developers Warned of Trojanized PyPI Packages Mimicking Popular Libraries
Software Security / Supply Chain Attack Cybersecurity researchers are warning of “imposter packages” mimicking popular libraries available on the Python…
Read More » -
Attackers Flood NPM Repository with Over 15,000 Spam Packages Containing Phishing Links
Open Source / Supply Chain Attack In what’s a continuing assault on the open source ecosystem, over 15,000 spam packages…
Read More » -
Researchers Hijack Popular NPM Package with Millions of Downloads
Supply Chain / Software Security A popular npm package with more than 3.5 million weekly downloads has been found vulnerable…
Read More » -
Hackers Using Google Ads to Spread FatalRAT Malware Disguised as Popular Apps
Ad Fraud / Malware Chinese-speaking individuals in Southeast and East Asia are the targets of a new rogue Google Ads…
Read More » -
Python Developers Beware: Clipper Malware Found in 450+ PyPI Packages!
Cryptocurrency / Software Security Malicious actors have published more than 451 unique Python packages on the official Python Package Index…
Read More » -
Enigma, Vector, and TgToxic: The New Threats to Cryptocurrency Users
Suspected Russian threat actors have been targeting Eastern European users in the crypto industry with fake job opportunities as bait…
Read More » -
Researchers Uncover Obfuscated Malicious Code in PyPI Python Packages
Supply Chain / Software Security Four different rogue packages in the Python Package Index (PyPI) have been found to carry…
Read More »