all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

VMConnect: Malicious PyPI packages imitate popular open source modules

Add to bookmarks
Aug. 3, 2023, 9:34 p.m. | Karlo Zanki

Security Boulevard securityboulevard.com




ReversingLabs has identified several malicious Python packages on the Python Package Index (PyPI) open source repository. In all, ReversingLabs researchers uncovered 24 malicious packages imitating three, popular open source Python tools: vConnector, a wrapper module for pyVmomi VMware vSphere bindings; as well as eth-tester, a collection of tools for testing ethereum based applications; and databases, a tool that gives asyncro support for a range of databases.


The post VMConnect: Malicious PyPI packages imitate popular open source …

collection dev & devsecops eth ethereum malicious malicious packages modules open source package packages popular pypi pypi packages python python package python package index python tools repository researchers reversinglabs software supply chain security testing threat research tools vmware vmware vsphere vsphere wrapper

Visit resource

More from securityboulevard.com / Security Boulevard

Security in the AI Sector: Understanding Infostealer Exposures and Corporate Risks an hour ago | securityboulevard.com
blog corporate emerging infostealer +9
Reading the Mandiant M-Trends 2024 3 hours ago | securityboulevard.com
blog etc incidents live +9
Lawsuits After Ransomware on the Rise, Comparitech Says 6 hours ago | securityboulevard.com
attacks companies cost of data breach cyberlaw +24
How Do I Protect My AI Model? 6 hours ago | securityboulevard.com
ai model ai models assets mend +4
Product Release: PreVeil 5.0 7 hours ago | securityboulevard.com
list page product product release +5
What’s hot at RSAC 2024: 8 SSCS talks you don’t want to miss 9 hours ago | securityboulevard.com
appsec & supply chain security cisos development don +16
ADCS Attack Paths in BloodHound — Part 2 9 hours ago | securityboulevard.com
abuse active directory adc adcs +16
It’s 3am… Do You Know Where Your Data Is? 10 hours ago | securityboulevard.com
3am blog data security +2
AI: Separating Fact from Fiction 11 hours ago | securityboulevard.com
fact fantasy fiction movies +2

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Security Engineer II- Full stack Java with React

@ JPMorgan Chase & Co. | Hyderabad, Telangana, India
View on infosec-jobs.com

Cybersecurity SecOps

@ GFT Technologies | Mexico City, MX, 11850
View on infosec-jobs.com

Senior Information Security Advisor

@ Sun Life | Sun Life Toronto One York
View on infosec-jobs.com

Contract Special Security Officer (CSSO) - Top Secret Clearance

@ SpaceX | Hawthorne, CA
View on infosec-jobs.com

Early Career Cyber Security Operations Center (SOC) Analyst

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com
View more jobs