Malicious Python Package Index packages NP6HelperHttptest and NP6HelperHttper, which had more than 700 cumulative downloads before being removed, facilitated security software bypass and malicious code execution through DLL sideloading, The Hacker News reports. Both packages, which are typosquatted versions of tools issued by ChapsVision for its NP6 marketing automation solution, contained a script enabling the download of a Kingsoft executable susceptible to DLL sideloading, a report from ReversingLabs showed.

Source: SC Magazine