Packages of Computer - Search News

SSH keys stolen by stream of malicious PyPI and npm packages

A stream of malicious npm and PyPi packages have been found stealing a wide range of sensitive data from software developers on the platforms. The campaign started on September 12, 2023, and was first ...

Bleeping Computer

Japan warns of malicious PyPi packages created by North Korean hackers

Japan's Computer Security Incident Response Team (JPCERT/CC) is warning that the notorious North Korean hacking group Lazarus has uploaded four malicious PyPI packages to infect developers with ...

Ars Technica

NPM flooded with malicious packages downloaded more than 86,000 times

Attackers are exploiting a major weakness that has allowed them access to the NPM code repository with more than 100 credential-stealing packages since August, mostly without detection. The finding, ...

Some results have been hidden because they may be inaccessible to you

Show inaccessible results

SSH keys stolen by stream of malicious PyPI and npm packages

Japan warns of malicious PyPi packages created by North Korean hackers

NPM flooded with malicious packages downloaded more than 86,000 times

Trending now