|
jeffv via plug on 3 Aug 2021 17:21:33 -0700
|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
|
[PLUG] PyPI - malicious libraries
|
- From: jeffv via plug <plug@lists.phillylinux.org>
- To: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
- Subject: [PLUG] PyPI - malicious libraries
- Date: Tue, 3 Aug 2021 09:56:18 -0400
- Authentication-results: smtp04.aqua.bos.sync.lan smtp.user=jeffv@op.net; auth=pass (LOGIN)
- Dkim-signature: v=1; a=rsa-sha1; d=op.net; s=20180222; c=relaxed/simple; q=dns/txt; i=@op.net; t=1627998978; h=From:Subject:Date:To:MIME-Version:Content-Type; bh=9N+tLzrq0Fj7BYNcdT//04FG0i8=; b=CYcIWLizxdvsbll7zJQljd+ct9qv+OyhiiUkmX+JrmWdCxzbGNx3AAmmaqwxKoyS SQGx1jtG+pArrmgJN0/ams27SbqP9AhHxC+zIRYG2lMliJ8DBdizZEVUd+V3DKNl D0oelrG3R5D14cNgh/+kSDbWGjJPY0W1x8zA7mWI+71N8YsCkgLlTkiGa/jaqQJk 9V8CxQhrG7k0vhyPmMgVDSo8NbnGiMiuyd8iay4GxeU5EOoQgudj8i3MjHfVLSKO awI+F5evbpkrNLdg0XGmKseUA6sIeox1tw2OP0pdT99bOAsPfSu7Sam+Tl1dsDLp Vrtv3UytYI3h/su6dfOhKA==;
- Reply-to: jeffv <jeffv@op.net>
- Sender: "plug" <plug-bounces@lists.phillylinux.org>
- User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.11.0
Credit-card-stealing, backdoored packages found in Python's PyPI library hub
https://www.theregister.com/2021/08/02/in_brief_security/
Malicious libraries capable of lifting credit card numbers and opening
backdoors on infected machines have been found in PyPI, the official
third-party software repository for Python.
___________________________________________________________________________
Philadelphia Linux Users Group -- http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug