all InfoSec news
This Week in Malware - 450 Packages and a Phishing Campaign Against PyPI Maintainers
Aug. 26, 2022, 4:25 p.m. | alinskens@sonatype.com (Aaron Linskens)
Sonatype Blog blog.sonatype.com
This week in malware we discovered and analyzed 450 packages flagged as malicious, suspicious, or dependency confusion attacks.
Also, this week a phishing email campaign targeted PyPI maintainers in attempts to compromise accounts and inject malware into the registry’s packages.
Additionally, Sonatype’s director of information security explored the connection between security and procurement.
campaign devzone maintainers malware malware prevention phishing phishing campaign pypi this week in malware vulnerabilities
More from blog.sonatype.com / Sonatype Blog
Cyber readiness and SBOMs
1 day, 23 hours ago |
blog.sonatype.com
Streamline your SBOM management with SBOM Manager
1 week, 2 days ago |
blog.sonatype.com
How to safeguard your software supply chain
1 week, 5 days ago |
blog.sonatype.com
Comparing and converting between SBOM formats
1 week, 5 days ago |
blog.sonatype.com
What are SBOM standards and formats?
2 weeks, 5 days ago |
blog.sonatype.com
Jobs in InfoSec / Cybersecurity
Cybersecurity Skills Challenge -- Sponsored by DoD
@ Correlation One | United States
Security Operations Center (SOC) Analyst
@ GK Cybersecurity Group | Remote
Azure Security Architect
@ First Quality | Remote US - Eastern or Central Timezone
Threat Intelligence Analyst
@ Atos | Remote Home, HOME (England & Wales), GB, Remote Hom
Alternance (F/H) Hardening, migration cloud et containerisation d'un application windows
@ Alstom | Villeurbanne, FR
Security Specialist / Analist (CIT)
@ Lely | Maassluis, Netherlands