all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Hijacked PyPI Package Installs NovaSentinel Stealer on Windows

Add to bookmarks
Feb. 24, 2024, 2:03 p.m. | Balaji N

Cyber Security News cybersecuritynews.com

Researchers identified a sophisticated cyberattack through a dormant Python Package Index (PyPI) package named Django-log-tracker, which was unexpectedly updated to deploy the NovaSentinel stealer malware. This discovery highlights a significant threat to the software supply chain, emphasizing the need for heightened security measures among developers and organizations. The django-log-tracker package, initially published in April 2022, […]


The post Hijacked PyPI Package Installs NovaSentinel Stealer on Windows appeared first on Cyber Security News.

cyberattack deploy developers discovery django hijacked log malware organizations package pypi pypi package python python package python package index researchers security security measures software software supply chain stealer supply supply chain threat tracker windows

Visit resource

More from cybersecuritynews.com / Cyber Security News

Cactus Ransomware Exploiting Qlik Servers Vulnerability 1 day, 12 hours ago | cybersecuritynews.com
cactus cactus ransomware code code execution +28
Hackers Abuse Autodesk Drive For Hosting Weaponized PDF Files 1 day, 12 hours ago | cybersecuritynews.com
abuse attack autodesk campaign +19
MuddyWater Hackers Abusing Legitimate RMM Tool to Deliver Malware 1 day, 15 hours ago | cybersecuritynews.com
abusing actor agent atera +26
Hackers Actively Exploiting WP Automatic Updates Plugin Vulnerability 1 day, 16 hours ago | cybersecuritynews.com
attack automatic can compromise +27
Microsoft Releases Historical MS-DOS 4.0 Source Code to the Public 1 day, 16 hours ago | cybersecuritynews.com
accessibility code decision developers +12
PoC Exploit Released For Critical Flowmon Vulnerability 1 day, 16 hours ago | cybersecuritynews.com
analysis a network command command injection +26
Chrome Critical Flaw Let Attackers Execute Arbitary Code : Patch Now 1 day, 17 hours ago | cybersecuritynews.com
arbitrary code attackers browservulnerability channel +21
Hackers Exploit Google Ads to Spread IP Scanner with Concealed Backdoor 2 days, 4 hours ago | cybersecuritynews.com
ads attacker backdoor campaign +23
PlugX USB worm Infected Over 2.5M Devices 2 days, 10 hours ago | cybersecuritynews.com
cyber security cybersecurity devices fame +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Salesforce Solution Consultant

@ BeyondTrust | Remote United States
View on infosec-jobs.com

Divisional Deputy City Solicitor, Public Safety Compliance Counsel - Compliance and Legislation Unit

@ City of Philadelphia | Philadelphia, PA, United States
View on infosec-jobs.com

Security Engineer, IT IAM, EIS

@ Micron Technology | Hyderabad - Skyview, India
View on infosec-jobs.com

Security Analyst

@ Northwestern Memorial Healthcare | Chicago, IL, United States
View on infosec-jobs.com

Werkstudent Cybersecurity (m/w/d)

@ Brose Group | Bamberg, DE, 96052
View on infosec-jobs.com
View more jobs