New Malicious PyPI Packages Caught Using Covert Side-Loading Tactics
Cybersecurity researchers have discovered two malicious packages on the Python Package Index (PyPI) repository that were found leveraging a technique called DLL side-loading to circumvent detection by security software and run malicious code.
The packages, named NP6HelperHttptest and NP6HelperHttper, were each downloaded 537 and 166 times, respectively,
2024-02-20 12:30:00
News
Edward Snowden’s IoCs
Edward Snowden’s IoCs I’m retiring. Personal domain: hxxp://lavabit.com Personal email address account: Ed_Snowden@lavabit.com edsnowden@lavabit.com Lavabit’s BitCoin address: 1Bqqy3SxZ27ZUogEeiKHYqPsmFwuRTErMu Known domain registration: hxxp://ismtgoxsolvent.com – 97.74.42.79; 50.63.202.93 Possible related domain registrations: hxxp://mtgox-creditors.com hxxp://mtgox-prod.net hxxp://mtgox-reabilitation.com hxxp://mtgox-rehabilitation.com hxxp://mtgox-claim.xyz – Read more…
0 Comments