September 20, 2024 at 04:21PM North Korean threat group, Gleaming Pisces, is suspected of covertly embedding remote access malware into open source Python packages for macOS and Linux, targeting developers. The malware, named PondRAT, executes malicious code to download a trojan. The group’s focus on non-Windows systems reflects its audience: developers. Vigilance against phishing attacks … Read more
September 17, 2024 at 09:15AM Tenable revealed details of the CloudImposer attack method, which could have led to remote code execution on Google Cloud Platform (GCP). The attack exploited a Python argument to carry out a dependency confusion attack. After reporting the vulnerability, Google promptly patched the RCE bug and updated its documentation to mitigate … Read more
June 27, 2024 at 06:28AM The text discusses building blockchain applications in native Python using AlgoKit for Algorand. It emphasizes the benefits of blockchain applications, Python’s suitability, setting up the development environment, and building secure applications using Python. It also provides insights into the smart contract development process and testing methods. For more information, visit … Read more
April 11, 2024 at 10:27AM GitGuardian’s 2023 and 2024 reports revealed significant security concerns in public repositories. The 2024 report found 12.8 million new exposed secrets on GitHub and highlighted security risks in PyPI. The report emphasizes the prevalence of open-source packages and stresses the importance of proper secret management to prevent potential exploitation. After … Read more
March 28, 2024 at 02:24PM The Python Package Index (PyPI) had to suspend new project creation and user registration to counter a malware upload campaign. Security researchers discovered malicious Python packages using typo-squatting to push multi-stage attacks to steal sensitive data and crypto wallets. The incident underscores the ongoing cybersecurity threats to software development ecosystems. … Read more
January 11, 2024 at 10:21AM A new Python-based hacking tool called FBot has emerged, targeting web servers, cloud services, and SaaS platforms. It includes features for credential harvesting, hijacking AWS and PayPal accounts, and attacking SaaS accounts. Similar to other cloud hacking tools, FBot aims to hijack cloud and SaaS services and monetize stolen access. … Read more