all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Obfuscated PyPI Packages Purporting to be i18n Libraries Actually Stealing Telegram Data

Add to bookmarks
Oct. 31, 2023, 4:53 p.m. | Phylum Research Team

Phylum blog.phylum.io

Phylum discovered two packages published to PyPI on October 28 that claim to be libraries for simplifying internationalization. The files were highly obfuscated and upon further inspection were found to contain malicious code designed to steal sensitive Telegram Desktop application data and system information, which it then sends to an

application claim code data desktop desktop application files found i18n information inspection libraries malicious obfuscated october packages phylum pypi pypi packages research sensitive steal stealing system telegram

Visit resource

More from blog.phylum.io / Phylum

Python Package Installation Attacks 2 days, 15 hours ago | blog.phylum.io
attackers attacks back code +14
Python Trojan Functions and Imports 2 days, 15 hours ago | blog.phylum.io
calling code concept functions +10
Python Package Spoofing 2 days, 15 hours ago | blog.phylum.io
authors code developers foundation +18
Series: How Malicious Python Code Gains Execution 2 days, 15 hours ago | blog.phylum.io
attackers code dependencies developer +21
Nation-State Threat Actors Renew Publications to npm 3 days, 8 hours ago | blog.phylum.io
apts attack back blog +18
Enterprise Strategy Group Report: The Growing Complexity of Securing the Software Supply Chain 1 week, 3 days ago | blog.phylum.io
america called complexity developer +21
Q1 2024 Evolution of Software Supply Chain Security Report 1 week, 4 days ago | blog.phylum.io
cve cves exploited in the wild +17
Rust crate shipping xz backdoor 2 weeks, 1 day ago | blog.phylum.io
attack backdoor compression engineer +11
Digital Detritus: Unintended Consequences of Open Source Sustainability Platforms 2 weeks, 3 days ago | blog.phylum.io
cobra consequences digital effect +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Data & Security Engineer Lead

@ LiquidX | Singapore, Central Singapore, Singapore
View on infosec-jobs.com

IT and Cyber Risk Control Lead

@ GXS Bank | Singapore - OneNorth
View on infosec-jobs.com

Consultant Senior en Gestion de Crise Cyber et Continuité d’Activité H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

Cyber Security Analyst (Weekend 1st Shift)

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com

Senior Manager, Cybersecurity

@ BlueTriton Brands | Stamford, CT, US
View on infosec-jobs.com
View more jobs