pypi
23 articles with this tag
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
CRITICAL
LOW
CRITICAL
HIGH
HIGH
HIGH
HIGH
HIGH
HIGH
MEDIUM
HIGH
HIGH
MEDIUM
MEDIUM
HIGH
HIGH
TrapDoor malware campaign puts developer workstations in CISO spotlight
durabletask (Microsoft's Python Durable Task client) compromised by TeamPCP | same Mini Shai-Hulud payload as last week's TanStack wave
Mini Shai-Hulud: Frequently asked questions about the TeamPCP npm and PyPI supply chain campaign
The AntV Supply Chain Campaign Expands: Microsoft's `durabletask` PyPI Package Compromised
‘Mini’ Shai-Hulud attack compromises hundreds of npm, PyPI packages
TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack
1,800 Hit in Mini Shai-Hulud Attack on SAP, Lightning, Intercom
lightning PyPI Compromise: A Bun-Based Credential Stealer in Python
Set up automated dependency scanning after the recent npm/PyPI supply chain attacks
Malicious Release of elementary-data PyPI Package Steals Cloud Credentials from Data Engineers
Telnyx Targeted in Growing TeamPCP Supply Chain Attack
Backdoored Telnyx PyPI package pushes malware hidden in WAV audio
TeamPCP strikes again: Backdoored Telnyx PyPI package delivers malware
TeamPCP strikes again - telnyx popular PyPI library compromised
How Lazarus Group is Weaponizing Open Source | Sonatype
Global Espionage: Lazarus Group Targets OSS Ecosystems
Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems - Live Threat Intelligence - Threat Radar | OffSeq.com
Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems
Lazarus Group exploits npm and PyPI with fake recruitment campaign
Fake job recruiters hide malware in developer coding challenges
Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems
Malicious packages for dYdX cryptocurrency exchange empties user wallets
Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware