all InfoSec news
python-dateutils—A Cryptominer in Disguise Targeting Windows, Linux, macOS
June 29, 2022, 4:10 p.m. | Ax Sharma
Sonatype Blog blog.sonatype.com
You've probably heard of the Python module 'dateutil'. The module offers powerful extensions to the standard datetime library extensively used by Python developers. Yesterday, however, Sonatype's automated malware detection system caught a suspicious PyPI package called 'python-dateutils' that mines Monero (XMR) cryptocurrency on your system—whether Windows, Linux, or macOS, and steals AWS credentials.
cryptocurrency cryptominer crypto mining featured linux macos malware prevention pypi python targeting vulnerabilities windows
More from blog.sonatype.com / Sonatype Blog
I have an SBOM, now what?
3 days, 12 hours ago |
blog.sonatype.com
PyPI crypto-stealer targets Windows users, revives malware campaign
3 days, 21 hours ago |
blog.sonatype.com
Zero-day vulnerabilities: A beginner's guide
1 week, 3 days ago |
blog.sonatype.com
Sonatype Lifecycle best practices: InnerSource
2 weeks, 3 days ago |
blog.sonatype.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)