A pernicious potpourri of Python packages in PyPI [Thursday, December 14, 2023]

A pernicious potpourri of Python packages in PyPI [Thursday, December 14, 2023]
Report

A pernicious potpourri of Python packages in PyPI

Description :
Researchers have discovered more than 100 malicious packages being distributed in the official Python package repository, PyPI, over the past year, in which 80 victims have downloaded files every day, including malware.

Published Created Modified
2023-12-14 21:18:03 2023-12-14 21:18:03 2023-12-14 21:19:51

Tags

Indicators

IPv4s :
  • 204.152.203.78
Domains :
  • blazywound.ignorelist.com
Hashes :
  • 104a5192cf032cee44b732d33458a27909cef45d7391e092b9c13acd5779bb39
MITRE ATT&CK Techniques :

External References

You can download the txt file containing the indicators by clicking on the button below:

About the author
Julien B.

Securitricks

Up-to-Date Cybersecurity Insights & Malware Reports

Securitricks

Great! You’ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to Securitricks.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.