all InfoSec news
Hijacked PyPI Package Installs NovaSentinel Stealer on Windows
Cyber Security News cybersecuritynews.com
Researchers identified a sophisticated cyberattack through a dormant Python Package Index (PyPI) package named Django-log-tracker, which was unexpectedly updated to deploy the NovaSentinel stealer malware. This discovery highlights a significant threat to the software supply chain, emphasizing the need for heightened security measures among developers and organizations. The django-log-tracker package, initially published in April 2022, […]
The post Hijacked PyPI Package Installs NovaSentinel Stealer on Windows appeared first on Cyber Security News.
cyberattack deploy developers discovery django hijacked log malware organizations package pypi pypi package python python package python package index researchers security security measures software software supply chain stealer supply supply chain threat tracker windows