all InfoSec news
W4SP continues to nest in PyPI: Same supply chain attack, different distribution method
Dec. 1, 2022, 8:35 p.m. | karlo.zanki@reversinglabs.com (Karlo Zanki)
ReversingLabs Blog blog.reversinglabs.com
Days after researchers for Phylum and Checkmarx revealed an ongoing software supply chain attack spreading the W4SP Stealer malware through malicious packages on the Python Package Index (PyPI), ReversingLabs researchers discovered 10 additional PyPI packages pushing modified versions of W4SP that were overlooked.
attack distribution nest pypi software supply chain security supply supply chain supply chain attack threat research w4sp
More from blog.reversinglabs.com / ReversingLabs Blog
Jobs in InfoSec / Cybersecurity
Senior Security Engineer - Detection and Response
@ Fastly, Inc. | US (Remote)
Application Security Engineer
@ Solidigm | Zapopan, Mexico
Defensive Cyber Operations Engineer-Mid
@ ISYS Technologies | Aurora, CO, United States
Manager, Information Security GRC
@ OneTrust | Atlanta, Georgia
Senior Information Security Analyst | IAM
@ EBANX | Curitiba or São Paulo
Senior Information Security Engineer, Cloud Vulnerability Research
@ Google | New York City, USA; New York, USA