#PyPI: 3 new #malicious #Python packages: "modularseven", "driftme", and "catme" were discovered in the PyPI repository with capabilities to deploy a #cryptocurrency mining #malware on affected #Linux devices:
#SoftwareSupplyChainSecurity
https://thehackernews.com/2024/01/beware-3-malicious-pypi-packages-found.html
Sam Stepanyan :verified: 🐘 /
npub18d…rltg5
2024-01-05 09:27:54
Author Public Key
npub18d0arwv295u03fd825dvn5eharfx25rtrkemffxnar9dzn82drtssrltg5Published at
2024-01-05 09:27:54Event JSON
{
"id": "14c1ab23d4a8f1b44a7f779a7af750b61a801bfb8211735831be07ee7d5e40df",
"pubkey": "3b5fd1b98a2d38f8a5a7551ac9d337e8d265506b1db3b4a4d3e8cad14cea68d7",
"created_at": 1704446874,
"kind": 1,
"tags": [
[
"t",
"pypi"
],
[
"t",
"malicious"
],
[
"t",
"python"
],
[
"t",
"cryptocurrency"
],
[
"t",
"malware"
],
[
"t",
"linux"
],
[
"t",
"SoftwareSupplyChainSecurity"
],
[
"proxy",
"https://infosec.exchange/users/securestep9/statuses/111702630378945437",
"activitypub"
]
],
"content": "#PyPI: 3 new #malicious #Python packages: \"modularseven\", \"driftme\", and \"catme\" were discovered in the PyPI repository with capabilities to deploy a #cryptocurrency mining #malware on affected #Linux devices:\n#SoftwareSupplyChainSecurity\n\nhttps://thehackernews.com/2024/01/beware-3-malicious-pypi-packages-found.html",
"sig": "25fd8f711f07ca8f119c926070f3a0eabfeba0dbe321283dd766214f140bc08d3a0ee0d298a9da6b3e0889e3fbf0e82cc5bc777d113b73338eb8199e1dda103d"
}