Researchers Uncover PyPI Package Hiding Malicious Code Behind Image File,
A malicious package discovered on the Python Package Index (PyPI) has been found employing a steganographic trick to conceal malicious code within image files.
The package in question, named « apicolor, » was uploaded to the Python third-party repository on October 31, 2022, and described as a « Core lib for REST API, » according to Israeli cybersecurity firm Check Point. It has since been taken
The package in question, named « apicolor, » was uploaded to the Python third-party repository on October 31, 2022, and described as a « Core lib for REST API, » according to Israeli cybersecurity firm Check Point. It has since been taken
,
A malicious package discovered on the Python Package Index (PyPI) has been found employing a steganographic trick to conceal malicious code within image files.
The package in question, named « apicolor, » was uploaded to the Python third-party repository on October 31, 2022, and described as a « Core lib for REST API, » according to Israeli cybersecurity firm Check Point. It has since been taken
The package in question, named « apicolor, » was uploaded to the Python third-party repository on October 31, 2022, and described as a « Core lib for REST API, » according to Israeli cybersecurity firm Check Point. It has since been taken
, ,
https://thehackernews.com/2022/11/researchers-uncover-pypi-package-hiding.html