Newly Uncovered PyPI Package Drops Fileless Cryptominer to Linux Systems,
A now-removed rogue package pushed to the official third-party software repository for Python has been found to deploy cryptominers on Linux systems.
The module, named « secretslib » and downloaded 93 times prior to its deletion, was released to the Python Package Index (PyPI) on August 6, 2022 and is described as « secrets matching and verification made easy. »
« On a closer
The module, named « secretslib » and downloaded 93 times prior to its deletion, was released to the Python Package Index (PyPI) on August 6, 2022 and is described as « secrets matching and verification made easy. »
« On a closer
,
A now-removed rogue package pushed to the official third-party software repository for Python has been found to deploy cryptominers on Linux systems.
The module, named « secretslib » and downloaded 93 times prior to its deletion, was released to the Python Package Index (PyPI) on August 6, 2022 and is described as « secrets matching and verification made easy. »
« On a closer
The module, named « secretslib » and downloaded 93 times prior to its deletion, was released to the Python Package Index (PyPI) on August 6, 2022 and is described as « secrets matching and verification made easy. »
« On a closer
, ,
https://thehackernews.com/2022/08/newly-uncovered-pypi-package-drops.html