PyPI Halts Sign-Ups Amid Surge of Malicious Package Uploads Targeting Developers

29 March 2024

The maintainers of the Python Package Index (PyPI) repository briefly suspended new user sign-ups following an influx of malicious projects uploaded as part of a typosquatting campaign. It said “new project creation and new user registration”

Source: The Hacker News

Date:

29 March 2024

Categorie(s):

NEWS

Tag(s):

Checkmarx, Malicious, Malware, Packages, PyPI

Bogus npm Packages Used to Trick Software Developers into Installing Malware27 April 2024
7-Year-Old 0-Day in Microsoft Office Exploited to Drop Cobalt Strike27 April 2024
AI Helps Improve About Managed Detection and Response26 April 2024
TikTok, Flowmon, Cisco, Brokewell, RuggedCom, Deepfakes, Non-Competes, Aaran Leyland – SWN #38126 April 2024
Impact of organizational structure on ransomware outcomes: Where does your org fit in?26 April 2024