all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Researchers Uncover PyPI Package Hiding Malicious Code Behind Image File

Add to bookmarks
Nov. 10, 2022, 12:44 p.m. | noreply@blogger.com (Ravie Lakshmanan)

The Hacker News thehackernews.com

A malicious package discovered on the Python Package Index (PyPI) has been found employing a steganographic trick to conceal malicious code within image files.
The package in question, named "apicolor," was uploaded to the Python third-party repository on October 31, 2022, and described as a "Core lib for REST API," according to Israeli cybersecurity firm Check Point. It has since been taken

code malicious package pypi pypi package researchers uncover

Visit resource

More from thehackernews.com / The Hacker News

North Korea's Lazarus Group Deploys New Kaolin RAT via Fake Job Lures 12 hours ago | thehackernews.com
access actor binary called +19
Network Threats: A Step-by-Step Attack Demonstration 17 hours ago | thehackernews.com
access advanced attack attackers +21
DOJ Arrests Founders of Crypto Mixer Samourai for $2 Billion in Illegal Transactions 18 hours ago | thehackernews.com
arrest arrests called criminal +17
Google Postpones Third-Party Cookie Deprecation Amid U.K. Regulatory Scrutiny 22 hours ago | thehackernews.com
address authority browser chrome +24
State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage 23 hours ago | thehackernews.com
actor arcanedoor campaign cisco +28
U.S. Treasury Sanctions Iranian Firms and Individuals Tied to Cyber Attacks 1 day, 15 hours ago | thehackernews.com
april assets attacks command +19
Researchers Detail Multistage Attack Hijacking Systems with SSLoad, Cobalt Strike 1 day, 15 hours ago | thehackernews.com
attack called campaign cobalt +22
Major Security Flaws Expose Keystrokes of Over 1 Billion Chinese Keyboard App Users 1 day, 19 hours ago | thehackernews.com
app apps baidu chinese +22
CISO Perspectives on Complying with Cybersecurity Regulations 1 day, 19 hours ago | thehackernews.com
accountability ciso cisos compliance +22

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Regional Leader, Cyber Crisis Communications

@ Google | United Kingdom
View on infosec-jobs.com

Regional Intelligence Manager, Compliance, Safety and Risk Management

@ Google | London, UK
View on infosec-jobs.com

Senior Analyst, Endpoint Security

@ Scotiabank | Toronto, ON, CA, M1K5L1
View on infosec-jobs.com

Software Engineer, Security/Privacy, Google Cloud

@ Google | Bengaluru, Karnataka, India
View on infosec-jobs.com

Senior Security Engineer

@ Coinbase | Remote - USA
View on infosec-jobs.com
View more jobs