Lazarus Exploits Typos to Sneak PyPI Malware into Dev Systems – ITTS

Lazarus Exploits Typos to Sneak PyPI Malware into Dev Systems

29 February 2024

The notorious North Korean state-backed hacking group Lazarus uploaded four packages to the Python Package Index (PyPI) repository with the goal of infecting developer systems with malware. The packages, now taken down, are pycryptoenv, pycryptoconf, quasarlib, and swapmempool.

Source: The Hacker News

Date:

29 February 2024

Categorie(s):

Tag(s):

Devs, Lazarus, Python Package Index, Security Pro, Systems

20 Best Linux Password Managers in 202428 April 2024
Reliable Web App Pattern: Now Optimizes Azure Migration with Enhanced Infrastructure and Security28 April 2024
Okta Warns of Unprecedented Surge in Proxy-Driven Credential Stuffing Attacks28 April 2024
Good Security Is About Iteration, Not Perfection.28 April 2024
Week in review: Two Cisco ASA zero-days exploited, MITRE breach, GISEC Global 202428 April 2024