all InfoSec news
VMConnect supply chain attack continues, evidence points to North Korea
ReversingLabs Blog blog.reversinglabs.com
In early August, ReversingLabs identified a malicious supply chain campaign that the research team dubbed “VMConnect.” That campaign consisted of two dozen malicious Python packages posted to the Python Package Index (PyPI) open-source repository. The packages mimicked popular open-source Python tools, including vConnector, a wrapper module for pyVmomi VMware vSphere bindings; eth-tester, a collection of tools for testing Ethereum-based applications; and databases, a tool that gives asynchronous support for a range of databases.
The research team has …
attack august campaign korea malicious north north korea package packages points popular pypi python python package python package index python tools repository research reversinglabs software supply chain security supply supply chain supply chain attack team threat research tools vmconnect vmware vmware vsphere vsphere wrapper