PyPI Attackers Still At It: Malicious Packages Drop Trojans and Info-stealers | allinfosecnews.com

June 22, 2023, 2:54 p.m. | Ax Sharma

Sonatype Blog blog.sonatype.com

This month, Sonatype’s automated malicious open source and malware detection systems flagged hundreds of malicious packages, 10 of which we have analyzed in this blog post.

attackers automated blog blog post detection featured info malicious malicious packages malware malware detection open source packages pypi pypi vulnerability sonatype stealers systems trojans vulnerability

More from blog.sonatype.com / Sonatype Blog

The new Sonatype Learn: Self-service educational materials where and when you need them 1 day, 14 hours ago | blog.sonatype.com

courses devops educational industry +15

The new Sonatype Learn: Self-service educational materials where and when you need them 1 day, 19 hours ago | blog.sonatype.com

courses devops educational industry +15

Enhance security with Sonatype Lifecycle and ServiceNow Application Vulnerability Response (AVR) integration 1 day, 21 hours ago | blog.sonatype.com

application application vulnerability integration integrations +14

Enhance security with Sonatype Lifecycle and ServiceNow Application Vulnerability Response (AVR) integration 1 day, 22 hours ago | blog.sonatype.com

application application vulnerability integration integrations +14

Sonatype Lifecycle best practices: InnerSource 2 days, 15 hours ago | blog.sonatype.com

best practices code code quality collaboration +9

Take control of your InnerSource components with InnerSource Insight 3 days, 17 hours ago | blog.sonatype.com

components control developers easier +11

A guide for open source software (OSS) security 1 week ago | blog.sonatype.com

critical devzone evaluation guide +17

Sonatype Lifecycle best practices: Reference policies, backup and restore 1 week, 3 days ago | blog.sonatype.com

backup backup and restore best practices can +26

Sonatype Lifecycle best practices: Reference policies, backup and restore 1 week, 3 days ago | blog.sonatype.com

backup backup and restore best practices can +24

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

IT Security Engineer

@ People Profilers | Singapore, Singapore, Singapore

View on infosec-jobs.com

Consultant - DFIR - EMEA (SA)

@ Control Risks | Johannesburg, Gauteng, South Africa

View on infosec-jobs.com

Consultant Sénior Cyber Sécurité H/F

@ Hifield | Lyon, France

View on infosec-jobs.com