W4SP continues to nest in PyPI: Same supply chain attack, different distribution method | allinfosecnews.com

Dec. 1, 2022, 8:35 p.m. | Karlo Zanki

Security Boulevard securityboulevard.com

Days after researchers for Phylum and Checkmarx revealed an ongoing software supply chain attack spreading the W4SP Stealer malware through malicious packages on the Python Package Index (PyPI), ReversingLabs researchers discovered 10 additional PyPI packages pushing modified versions of W4SP that were overlooked.

The post W4SP continues to nest in PyPI: Same supply chain attack, different distribution method appeared first on Security Boulevard.

attack distribution nest pypi software supply chain security supply supply chain supply chain attack threat research w4sp

More from securityboulevard.com / Security Boulevard

Scaling Application Security With Application Security Posture Management (ASPM) 3 hours ago | securityboulevard.com

application application security application security posture management aspm +13

Crunching Some Numbers on PHP Support 7 hours ago | securityboulevard.com

application breaking can continue +16

Google Chrome DBSC Protection Tested Against Cookie Attacks 8 hours ago | securityboulevard.com

attacks authentication browser browser security +31

What is SOC 2 Compliance Audit? 9 hours ago | securityboulevard.com

audit audits businesses client +27

The Dark Side of EDR: Repurpose EDR as an Offensive Tool 10 hours ago | securityboulevard.com

capabilities code dark edr +13

The Ultimate Guide to SBIR and STTR Program Budgeting 14 hours ago | securityboulevard.com

budgeting budgets can corporations +14

Vulnerabilities for AI and ML Applications are Skyrocketing 18 hours ago | securityboulevard.com

ai ai and ml in security ai development applications +34

Cheap ‘Junk-Gun Ransomware’ Emerging on the Dark Web 18 hours ago | securityboulevard.com

affiliates as-a-service blackcat cl0p +30

What Makes Containers Vulnerable? 19 hours ago | securityboulevard.com

containers guide mend security +5

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Security Engineer, Incident Response

@ Databricks | Remote - Netherlands

View on infosec-jobs.com

Associate Vulnerability Engineer - Mid-Atlantic region (Part-Time)

@ GuidePoint Security LLC | Remote in VA, MD, PA, NC, DE, NJ, or DC

View on infosec-jobs.com

Data Security Architect

@ Accenture Federal Services | Washington, DC

View on infosec-jobs.com

Identity Security Administrator

@ SailPoint | Pune, India

View on infosec-jobs.com