Software depositories are a prime target for threat actors, especially those offering modules that other developers include in their software. Here is an attack aimed at a Python repository: Malicious PyPi packages aim DDoS attacks at Counter-Strike servers (bleepingcomputer.com) How secure is open source software? Do you use open source …
Our trust in public code – UPDATED 24 May 2022
The original post was made on 12 May 2022 Update 24 May 2022 Python is a popular coding language and many code libraries exist to make the programmer’s life a little easier. But as indicated in the articles below if that open source code becomes popular, then it also becomes …
Continue reading “Our trust in public code – UPDATED 24 May 2022”
What can a hacker do? Swap your BTC address for theirs, when you copy and paste!
If you do not know what a BTC address is then this this particular demonstration of of a Python hack will not impact you. If you do use bitcoin or other cryptocurrency then have a look at this SANS blog by Xme: Multi-Cryptocurrency Clipboard Swapper – SANS Internet Storm Centre …
Continue reading “What can a hacker do? Swap your BTC address for theirs, when you copy and paste!”
A specific but large target – but what does it do?
Targeting Chinese speaking people gives you a lot of potential targets but the researcher at SANS was unsure what this malicious does. Malicious Python Script Targeting Chinese People – SANS Internet Storm Center