all InfoSec news
Package names repurposed to push malware on PyPI
Malware Analysis, News and Indicators - Latest topics malware.news
In the beginning of March, ReversingLabs researchers encountered a malicious package on the Python Package Index (PyPI) named termcolour, a three-stage downloader published in multiple versions. Finding this malicious payload wasn’t difficult, but what piqued our interest was its name. The termcolour package wasn’t new. In fact, it had been published to PyPI two years earlier, and then removed. It reappeared on PyPI in the beginning of March — this time as a malicious downloader.
How is it that the …
fact interest malicious malware march name names package payload pypi python python package python package index researchers reversinglabs stage