News
A malicious Python package named 'fabrice' has been present in the Python Package Index (PyPI) since 2021, stealing Amazon Web Services credentials from unsuspecting developers.
Multiple malicious Python packages leaking sensitive user information have been uncovered by security experts. In a blog post, Sonatype security researcher Ax Sharma says the packages: loglib ...
PyPI module 'ctx' that gets downloaded over 20,000 times a week has been compromised in a software supply chain attack with malicious versions stealing the developer's environment variables. The ...
Both attacks appears to be the work of the same actor Security researchers this week identified two corrupt Python and PHP packages in what appears to be yet another instance of a software supply ...
Results that may be inaccessible to you are currently showing.
Hide inaccessible results
Feedback