Malicious PyPI Package Removes netstat, Tampers with SSH Config

12 February 2023

A recent report by Sonatype security researcher Ax Sharma highlights newly discovered malicious packages on the PyPI registry, including , which can install the Meterpreter trojan disguised as pip, delete the system utility, and tamper with SSH file. Named after the popular audio codec developed by Qualcomm and used in many Bluetooth devices, is not the only new threat identified on PyPI.

Read full article on InfoQ

Date:

12 February 2023

Categorie(s):

NEWS

Tag(s):

Cloud, Cloud Computing, Config, Development, DevOps

New Guide Explains How to Eliminate the Risk of Shadow SaaS and Protect Corporate Data3 May 2024
Indonesia is a Spyware Haven, Amnesty International Finds3 May 2024
FortiGate 200G series boosts campus connectivity for Wi-Fi 73 May 2024
Nokod Security Platform secures low-code/no-code development environments and apps3 May 2024
NSA, FBI Alert on N. Korean Hackers Spoofing Emails from Trusted Sources3 May 2024