all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

PyPI repo poisoned with “Colour-Blind” RAT

Add to bookmarks
March 9, 2023, 4:31 p.m. | John P. Mello Jr.

Security Boulevard securityboulevard.com




Malicious actors are increasingly dropping malware packages into open-source software repositories in the hope that developers will spread that malicious code throughout their applications. The latest case in point: Kroll's recent discovery of a full-featured information stealer and remote access trojan (RAT) into the Python Package Index (PyPI).


The post PyPI repo poisoned with “Colour-Blind” RAT appeared first on Security Boulevard.

access applications case code colour-blind developers discovery featured hope information information stealer kroll latest malicious malicious actors malware open-source software package packages point pypi python python package python package index rat remote access remote access trojan repo repositories security security boulevard software software supply chain security stealer threat research trojan

Visit resource

More from securityboulevard.com / Security Boulevard

The Real Risk is Not Knowing Your Real Risk: Perspectives from Asia Pacific Tour with … 6 hours ago | securityboulevard.com
asia asia pacific balbix customer +15
Airsoft Data Breach Exposes Data of 75,000 Players 8 hours ago | securityboulevard.com
airsoft attack surface authentication breach +31
Get SOAR Savvy Before RSAC 2024: 5 Reads to Level Up Your SOC 9 hours ago | securityboulevard.com
and response automation check d3 security +24
Cloud Monitor Automation Thwarts Phishing & Malware Emails 10 hours ago | securityboulevard.com
automation chief cloud cybersecurity +27
MY TAKE: Is Satya Nadella’s ‘Secure Future Initiative’ a deja vu of ‘Trustworthy Computing?’ 11 hours ago | securityboulevard.com
computing conference eve francisco +19
Palo Alto Networks Extends SASE Reach to Unmanaged Devices 12 hours ago | securityboulevard.com
alto devices devops devsecops +20
USENIX Security ’23 – Cryptographic Deniability: A Multi-perspective Study of User Perceptions and Expectations 12 hours ago | securityboulevard.com
access authors channel conference +17
The impact of automating open source dependency management 12 hours ago | securityboulevard.com
automation business consuming customer +14
Unlocking SMB Cybersecurity: The Rise of Virtual CISOs in 2024 and Beyond 12 hours ago | securityboulevard.com
align beyond business businesses +20

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Principal Security Engineer

@ Elsevier | Home based-Georgia
View on infosec-jobs.com

Infrastructure Compliance Engineer

@ NVIDIA | US, CA, Santa Clara
View on infosec-jobs.com

Information Systems Security Engineer (ISSE) / Cybersecurity SME

@ Green Cell Consulting | Twentynine Palms, CA, United States
View on infosec-jobs.com

Sales Security Analyst

@ Everbridge | Bengaluru
View on infosec-jobs.com

Alternance – Analyste Threat Intelligence – Cybersécurité - Île-de-France

@ Sopra Steria | Courbevoie, France
View on infosec-jobs.com

Third Party Cyber Risk Analyst

@ Chubb | Philippines
View on infosec-jobs.com
View more jobs