Malicious Python libraries stealing OpenPGP and SSH keys:

– Look for python3-dateutil, and jeIlyfish.
– Both modules try to exfiltrate SSH/OpenPGP keys and send them to an IP address.
– This is the third time the PyPI team intervenes to remove typo-squatted malicious Python libraries from the official repository.

#python #malware #pypi #infosec #security #cybersecurity

@infosechandbook Aaand that's why I love to have trusted package maintainers (aka the distribution model) different from the developers.


it only works if the distro maintainers know their shit. the "let everything run with the same access rights" model on the desktop and commandline has to stop!

Sign in to participate in the conversation

This is the social network for's community.