Developers Beware: Malicious Rust Libraries Caught Transmitting OS Info to Telegram Channel,
In yet another sign that developers continue to be targets of software supply chain attacks, a number of malicious packages have been discovered on the Rust programming language’s crate registry.
The libraries, uploaded between August 14 and 16, 2023, were published by a user named « amaperf, » Phylum said in a report published last week. The names of the packages, now taken down, are as follows:
The libraries, uploaded between August 14 and 16, 2023, were published by a user named « amaperf, » Phylum said in a report published last week. The names of the packages, now taken down, are as follows:
,
In yet another sign that developers continue to be targets of software supply chain attacks, a number of malicious packages have been discovered on the Rust programming language’s crate registry.
The libraries, uploaded between August 14 and 16, 2023, were published by a user named « amaperf, » Phylum said in a report published last week. The names of the packages, now taken down, are as follows:
The libraries, uploaded between August 14 and 16, 2023, were published by a user named « amaperf, » Phylum said in a report published last week. The names of the packages, now taken down, are as follows:
, ,
https://thehackernews.com/2023/08/developers-beware-malicious-rust.html