Malicious Python libraries stealing OpenPGP and SSH keys:

zdnet.com/article/two-maliciou

– Look for python3-dateutil, and jeIlyfish.
– Both modules try to exfiltrate SSH/OpenPGP keys and send them to an IP address.
– This is the third time the PyPI team intervenes to remove typo-squatted malicious Python libraries from the official repository.

#python #malware #pypi #infosec #security #cybersecurity

@infosechandbook Aaand that's why I love to have trusted package maintainers (aka the distribution model) different from the developers.

Follow

@phel
it only works if the distro maintainers know their shit. the "let everything run with the same access rights" model on the desktop and commandline has to stop!
@infosechandbook

Sign in to participate in the conversation
Conesphere.Social

This is the social network for Conesphere.com's community.