サイバーヴィッシュ テクノロジーなどに関する最新の洞察とトレンド packages
サイバーセキュリティ

Researchers Uncover 29 Malicious PyPI Packages Targeted Developers with W4SP Stealer

29 Packages in Python Package Index have been uncovered. Cybersecurity researchers have uncovered 29 packages in Python Package Index (PyPI) which is the official third-party software repository for the Python programming language. The researchers have found out that the Packages aim to infect developers’ machines with a malware called W4SP Stealer. “The main attack seems to have started around October 12, 2022, slowly picking up steam to a concentrated effort around October 22,” software supply chain security company Phylum said in a report published this week. The list of offending packages is as follows: typesutil, typestring, sutiltype, duonet, fatnoob, strinfer, pydprotect, incrivelsim, twyne, pyptext, installpy, faq, colorwin, requests-httpx, colorsama, shaasigma, […]

続きを読む