all InfoSec news
Malicious PyPI Packages Using Compiled Python Code to Bypass Detection
June 1, 2023, 12:16 p.m. | info@thehackernews.com (The Hacker News)
The Hacker News thehackernews.com
"It may be the first supply chain attack to take advantage of the fact that Python bytecode (PYC) files can be directly executed," ReversingLabs analyst Karlo Zanki said in a report shared with The Hacker News.
The package
analyst application application security application security tools attack bypass bytecode code detection fact files malicious may novel package packages pypi pypi packages python python package python package index repository researchers reversinglabs security security tools supply supply chain supply chain attack tools
More from thehackernews.com / The Hacker News
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Security Operations Manager-West Coast
@ The Walt Disney Company | USA - CA - 2500 Broadway Street
Vulnerability Analyst - Remote (WFH)
@ Cognitive Medical Systems | Phoenix, AZ, US | Oak Ridge, TN, US | Austin, TX, US | Oregon, US | Austin, TX, US
Senior Mainframe Security Administrator
@ Danske Bank | Copenhagen V, Denmark