all InfoSec news
Finding malicious PyPI packages through static code analysis: Meet GuardDog
Nov. 15, 2022, midnight |
Datadog Security Labs securitylabs.datadoghq.com
This blog post presents the internship project of Ellen Wang, who interned in the Datadog Security Research team.
In recent months, the industry has seen an increase in attacks targeting the software supply chain – a term that encompasses tools, code, and infrastructure needed to deploy an application, often involving open source or third-party vendor components. One common way threat actors execute these attacks is by compromising or uploading malicious dependencies in open source software package repositories, including the Python …
analysis code code analysis malicious packages pypi static code analysis
More from securitylabs.datadoghq.com / Datadog Security Labs
An analysis of a TeamTNT doppelgänger
1 month, 3 weeks ago |
securitylabs.datadoghq.com
Highlights from Datadog Security Labs in 2023
2 months, 3 weeks ago |
securitylabs.datadoghq.com
Kubernetes security fundamentals: API Security
3 months, 3 weeks ago |
securitylabs.datadoghq.com
Jobs in InfoSec / Cybersecurity
Information Technology Specialist II: Network Architect
@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
Cybersecurity Skills Challenge -- Sponsored by DoD
@ Correlation One | United States
Security Operations Center (SOC) Analyst
@ GK Cybersecurity Group | Remote
Technical Writer Cybersecurity (Clearance Required)
@ ICF | Virginia Client Office (VA88)
Threat Management & Intelligence Expert (m/f/d)
@ METRO/MAKRO | Düsseldorf, Germany
IT Security Manager
@ Deutsche Telekom IT Solutions Slovakia | Košice, Slovakia (Slovak Republic)