tldrdailynews.com logo
Tag

Pypi

All articles tagged with #pypi

TrapDoor Strikes npm, PyPI, and Crates.io with Cross-Ecosystem Credential-Stealing Malware
security2 days ago

TrapDoor Strikes npm, PyPI, and Crates.io with Cross-Ecosystem Credential-Stealing Malware

A coordinated TrapDoor campaign targets npm, PyPI, and Crates.io, distributing 34 malicious packages across hundreds of versions to steal developer secrets, crypto wallets, SSH keys, cloud credentials, and environment data. npm payloads run trap-core.js to harvest credentials and establish persistence via cron, systemd, Git hooks, and SSH lateral movement; Rust crates search keystores and exfiltrate data to GitHub Gists; Python packages auto-execute on import and fetch a remote JavaScript payload executed via node -e. The attack also hides instructions in .cursorrules and CLAUDE.md to trick AI tools through PRs, signaling an evolution of developer-workflow attacks across multiple ecosystems.

via The Hacker News|
#cratesio#credential-theft#npm
technology9 months ago

PYX: Advancing Python Packaging

The article humorously and critically discusses the ongoing challenges and frustrations in Python packaging, highlighting the multitude of tools, inconsistent solutions, native dependencies, and ecosystem fragmentation, while introducing 'uv' as a promising, fast alternative for package management and installation. It also touches on concerns about commercialization, licensing, and the future of open source tools like pyx and uv in the Python community.

via Hacker News|
#dependency-management#performance#pypi
"Protecting Windows and Linux PCs from Malicious PyPI Malware: Essential Safety Measures"
cybersecurity2 years ago

"Protecting Windows and Linux PCs from Malicious PyPI Malware: Essential Safety Measures"

Researchers have discovered almost a dozen malware-laden packages on the PyPI repository, delivering the WhiteSnake Stealer infostealer capable of evading antivirus programs and targeting Windows PCs. The malware aims to steal information from web browsers, cryptocurrency wallets, and messaging apps, and includes a clipboard monitor for cryptocurrency theft. Developers are advised to remain cautious when using PyPI, watch for suspicious package names, and ensure they are downloading legitimate packages to protect against potential threats.

via TechRadar|
#cybersecurity#malware#pypi
"PyPI Malware Threatens Windows and Linux Users with Crypto and Info Theft"
cybersecurity2 years ago

"PyPI Malware Threatens Windows and Linux Users with Crypto and Info Theft"

Malicious packages on the PyPI repository have been found to deliver the WhiteSnake Stealer malware on Windows systems, while also targeting Linux hosts with a Python script. The malware, uploaded by a threat actor named "WS," is capable of stealing information, communicating with a C&C server using the Tor protocol, and exfiltrating sensitive data, particularly crypto wallet information. The packages have been observed to overwrite clipboard content with attacker-owned wallet addresses and steal data from browsers, applications, and crypto services. This discovery highlights the ability of a single malware author to disseminate multiple info-stealing malware packages into the PyPI library over time.

via The Hacker News|
#cybersecurity#infostealer#malware