all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

New Malicious PyPI Packages Use DLL Sideloading In A Supply Chain Attack

Add to bookmarks
Feb. 21, 2024, 11:16 a.m. | Eswar

GBHackers On Security gbhackers.com

Researchers have discovered that threat actors have been using open-source platforms and codes for several purposes, such as hosting C2 infrastructure, storing stolen data, and delivering second and third-stage downloaders or rootkit programs. Two open-source PyPI packages were discovered to be utilized by threat actors for executing code via DLL sideloading attacks as a means […]


The post New Malicious PyPI Packages Use DLL Sideloading In A Supply Chain Attack appeared first on GBHackers on Security | #1 Globally Trusted …

attack c2 infrastructure code computer security data dll dll sideloading hosting infrastructure malicious malicious pypi packages malware packages platforms pypi pypi packages researchers rootkit sideloading stage stolen supply supply chain supply chain attack supplychainsecurity third threat threat actors threats

Visit resource

More from gbhackers.com / GBHackers On Security

ELLIO and ntop partnership to boost high-speed network traffic monitoring with real-time data on opportunistic … 1 day, 16 hours ago | gbhackers.com
applications attacks botnets commercial +16
LilacSquid Hackers Attacking IT Industries To Harvest Confidential Data 1 day, 17 hours ago | gbhackers.com
access advanced persistent threat can cisco +29
FlyingYeti Exploits WinRAR Vulnerability For Targeted Malware Attacks 1 day, 17 hours ago | gbhackers.com
actor attacks cve cybersecurity threats +23
Hackers Weaponizing MS Office-Cracked Versions to Deliver Malware 1 day, 17 hours ago | gbhackers.com
attackers changing commands cracked +23
DDoS-as-a-Service Botnet Backed by Mirai Attacking Gaming Community 1 day, 17 hours ago | gbhackers.com
as-a-service attacks botnet botnets +19
Hackers Exploiting Stored XSS Vulnerabilities in WordPress Plugins 1 day, 18 hours ago | gbhackers.com
attackers cross-site cve cve-2023-40000 +25
VirusTotal Celebrates 20th Anniversary, What’s Next? 1 day, 21 hours ago | gbhackers.com
20th anniversary anniversary cyber security cybersecurity +16
Beware of Fake Browser Updates That Deliver Bitrat & Lumma Stealer 1 day, 22 hours ago | gbhackers.com
attackers breaches browser campaign +24
Progress Telerik Report Server Flaw Let Attackers Bypass Authentication 2 days, 17 hours ago | gbhackers.com
attackers authentication authentication bypass bypass +13

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com