Hosted on MSN12mon
Python devs are being targeted by this massive infostealing malware campaign
Cybersecurity researchers from Checkmarx have discovered a new infostealing campaign that leveraged typosquatting and stolen GitHub accounts to distribute malicious Python packages to the PyPI ...
Infosecurity Magazine24y
Surge in Malicious Software Packages Exploits System Flaws
A rise in malicious software packages exploiting system vulnerabilities has been detected by security researchers. A new ...
CSOonline17d
Linux, macOS users infected with malware posing as legitimate Go packages
Threat actors are typosquatting popular Go packages such as Hypert and Layout to drop malware on Linux and macOS systems. In a new typosquatting campaign, threat actors are seen using malicious Go ...
Computing8mon
CrowdStrike: Thousands of typosquatting domains registered after global outage
Thousands of typosquatting domains – websites with subtly misspelled names mirroring legitimate companies – have sprung up in recent days, aiming to deceive unsuspecting users into divulging ...