all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Popular Python package compromised: Don’t ‘Blindly Trust Open Source’

Add to bookmarks
May 26, 2022, 12:24 a.m. | brooke.crothers

Security Boulevard securityboulevard.com

Popular Python package compromised: Don’t ‘Blindly Trust Open Source’

brooke.crothers

Wed, 05/25/2022 - 17:24



  • 13 views



Python package compromise

The Python package ctx, which averages over 20,000 downloads per week, was compromised on the Python Package Index (PyPI), according to both forum and social media posts and a bevy of news reports


“When we browse the release history tab, we can see various versions of ctx uploaded within the past few days,” the SANS Institute said on May 24 …

compromised don open source package popular python trust

Visit resource

More from securityboulevard.com / Security Boulevard

What is Network Pen Testing? 2 hours ago | securityboulevard.com
assessment attack cyber cyber security +27
RSAC 2024 Innovation Sandbox | The Future Frontline: Harmonic Security’s Data Protection in the AI … 4 hours ago | securityboulevard.com
benchmark blog conference cybersecurity +22
How to Migrate from FedRAMP Rev 4 to FedRAMP Rev 5 6 hours ago | securityboulevard.com
can development evolution fedramp +9
NodeZero: Testing for Exploitability of Palo Alto Networks CVE-2024-3400 8 hours ago | securityboulevard.com
advisory alto april cve +18
USENIX Security ’23 – LibScan: Towards More Precise Third-Party Library Identification for Android Applications 11 hours ago | securityboulevard.com
access android applications authors +20
N.A. Developers Optimistic About Generative AI and Code Security 11 hours ago | securityboulevard.com
ai security america can cloud security +34
Defending Against ArcaneDoor: How Eclypsium Protects Network Devices 11 hours ago | securityboulevard.com
actor adaptive security arcanedoor asa +27
AI Adoption Prompts Security Advisory from NSA 11 hours ago | securityboulevard.com
adoption advisory ai ai adoption +26
AI Data Poisoning: How Misleading Data Is Evading Cybersecurity Protections 11 hours ago | securityboulevard.com
ai cybersecurity ai data ai data poisoning ai security attacks +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Digital Trust Cyber Transformation Senior

@ KPMG India | Mumbai, Maharashtra, India
View on infosec-jobs.com

Security Consultant, Assessment Services - SOC 2 | Remote US

@ Coalfire | United States
View on infosec-jobs.com

Sr. Systems Security Engineer

@ Effectual | Washington, DC
View on infosec-jobs.com

Cyber Network Engineer

@ SonicWall | Woodbridge, Virginia, United States
View on infosec-jobs.com

Security Architect

@ Nokia | Belgium
View on infosec-jobs.com
View more jobs