all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

SentinelSneak: Malicious PyPI module poses as security software development kit

Add to bookmarks
Dec. 19, 2022, 3:54 p.m. | karlo.zanki@reversinglabs.com (Karlo Zanki)

ReversingLabs Blog blog.reversinglabs.com





A malicious Python file found on the PyPI repository adds backdoor and data exfiltration features to what appears to be a legitimate SDK client from SentinelOne.

development kit malicious pypi security security software sentinelsneak software software development software development kit software supply chain security threat research

Visit resource

More from blog.reversinglabs.com / ReversingLabs Blog

When it comes to threat modeling, not all threats are created equal 13 hours ago | blog.reversinglabs.com
appsec & supply chain security can career fix +4
CISA's new 'vulnrichment' program aims to bolster the NVD 1 day, 13 hours ago | blog.reversinglabs.com
agency appsec & supply chain security bolster cisa +17
ReversingLabs Search Extension for Splunk Enterprise 2 days, 12 hours ago | blog.reversinglabs.com
apis application blog command +13
What you missed at RSA Conference 2024: Key trends and takeaways 2 days, 13 hours ago | blog.reversinglabs.com
america appsec & supply chain security artificial intelligence (ai) center +20
NSA: State-backed attackers are not after your data — they're targeting CI 1 week ago | blog.reversinglabs.com
advanced advanced persistent threat agency apt +22
CI/CD pipelines and the cloud: Are your development secrets at risk? 1 week, 1 day ago | blog.reversinglabs.com
appsec & supply chain security aws azure can +21
Why GenAI fails at full SOC automation 1 week, 2 days ago | blog.reversinglabs.com
ai tools automation autonomous build +23
Verizon 2024 DBIR: Software supply chain risks fuel a data breach epidemic 2 weeks ago | blog.reversinglabs.com
alarm appsec & supply chain security breach breaches +25
What’s hot at RSAC 2024: 8 SSCS talks you don’t want to miss 2 weeks, 1 day ago | blog.reversinglabs.com
appsec & supply chain security cisos development don +16

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Cyber Incident Manager 3

@ ARSIEM | Pensacola, FL
View on infosec-jobs.com

On-Site Environmental Technician II - Industrial Wastewater Plant Operator and Compliance Inspector

@ AECOM | Billings, MT, United States
View on infosec-jobs.com

Sr Security Analyst

@ Everbridge | Bengaluru
View on infosec-jobs.com