all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Multiple malicious packages in PyPI repository found stealing AWS secrets

Add to bookmarks
June 25, 2022, 5:52 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Researchers discovered multiple malicious Python packages in the official PyPI repository stealing AWS credentials and other info. Sonatype researchers discovered multiple Python packages in the official PyPI repository that have been developed to steal secrets (i.e. AWS credentials and environment variables) and also upload these to a publicly exposed endpoint. The malicious packages, which were […]


The post Multiple malicious packages in PyPI repository found stealing AWS secrets appeared first on Security Affairs.

aws breaking news hacking hacking news information security news it information security malicious malicious packages pierluigi paganini pypi pypi malicious packages repository secrets security stealing

Visit resource

More from securityaffairs.co / Security Affairs

Cryptocurrencies and cybercrime: A critical intermingling an hour ago | securityaffairs.co
breaking news critical cryptocurrencies cyber crime +14
Kaiser Permanente data breach may have impacted 13.4 million patients 2 hours ago | securityaffairs.co
american breach breaking news care +27
Over 1,400 CrushFTP internet-facing servers vulnerable to CVE-2024-4040 bug 4 hours ago | securityaffairs.co
attacks breaking news bug critical +25
Sweden’s liquor supply severely impacted by ransomware attack on logistics company 6 hours ago | securityaffairs.co
alcohol attack breaking news critical +17
CISA adds Cisco ASA and FTD and CrushFTP VFS flaws to its Known Exploited Vulnerabilities … 17 hours ago | securityaffairs.co
actor agency asa breaking news +28
CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog 1 day ago | securityaffairs.co
agency breaking news catalog cisa +29
DOJ arrested the founders of crypto mixer Samourai for facilitating $2 Billion in illegal transactions 1 day ago | securityaffairs.co
arrest arrested bitcoin breaking news +23
Google fixed critical Chrome vulnerability CVE-2024-4058 1 day, 5 hours ago | securityaffairs.co
attacker breaking news browser can +22
Nation-state actors exploited two zero-days in ASA and FTD firewalls to breach government networks 1 day, 17 hours ago | securityaffairs.co
actor adaptive security apt arcanedoor +32

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

IT Security Manager

@ Teltonika | Vilnius/Kaunas, VL, LT
View on infosec-jobs.com

Security Officer - Part Time - Harrah's Gulf Coast

@ Caesars Entertainment | Biloxi, MS, United States
View on infosec-jobs.com

DevSecOps Full-stack Developer

@ Peraton | Fort Gordon, GA, United States
View on infosec-jobs.com

Cybersecurity Cooperation Lead

@ Peraton | Stuttgart, AE, United States
View on infosec-jobs.com

Cybersecurity Engineer - Malware & Forensics

@ ManTech | 201DU - Customer Site,Herndon, VA
View on infosec-jobs.com
View more jobs