News

Malicious PyPi package hides RAT malware, targets Discord devs since 2022
A malicious Python package targeting Discord developers with remote access trojan (RAT) malware was spotted on the Python ...
The Hacker News4d
Researchers Uncover Malware in Fake Discord PyPI Package Downloaded 11,500+ Times
PyPI package 'discordpydebug' hides a RAT, downloaded 11,574 times, using stealthy HTTP polling to bypass defenses.
Gmail servers hijacked by malicious PyPI packages to spread havoc - here's how to stay safe
Socket found seven malicious packages on PyPI The packages were abusing Gmail and WebSocket They were removed from the platform Several malicious PyPI packages were recently observed abusing Gmail to ...
Hosted on MSN1mon
Malicious Python packages are stealing vital data, and have been downloaded thousands of times already
and the third to test for valid credit cards All three have since been removed from the repository Multiple open source software packages on the Python Package Index (PyPI) repository were found ...
Malicious PyPI packages abuse Gmail, websockets to hijack systems
Seven malicious PyPi packages were found using Gmail's SMTP servers and WebSockets for data exfiltration and remote command ...