Multiple Backdoored Python Libraries Caught Stealing AWS Secrets and Keys

[correlate]

[correlate]

Level 18
Thread author
Top Poster
Well-known
May 4, 2019
801
Content source
https://thehackernews.com/2022/06/multiple-backdoored-python-libraries.html
Researchers have discovered a number of malicious Python packages in the official third-party software repository that are engineered to exfiltrate AWS credentials and environment variables to a publicly exposed endpoint.

The list of packages includes loglib-modules, pyg-modules, pygrata, pygrata-utils, and hkg-sol-utils, according to Sonatype security researcher Ax Sharma. The packages and as well as the endpoint have now been taken down.
Click to expand...
thehackernews.com

Multiple Backdoored Python Libraries Caught Stealing AWS Secrets and Keys

Researchers have identified multiple malicious Python packages designed to steal AWS credentials and environment variables.
thehackernews.com thehackernews.com
 
  • Like
  • +Reputation
Reactions: harlan4096, Venustus, Trooper and 4 others
You must log in or register to reply here.

Similar threads

MuzzMelbourne
    • Like
    • Wow
Popular Python and PHP libraries hijacked to steal AWS keys
Replies
0
Views
476
News Archive
MuzzMelbourne
MuzzMelbourne
silversurfer
    • Like
    • +Reputation
AlienFox Malware Targets API Keys and Secrets from AWS, Google, and Microsoft Cloud Services
Replies
0
Views
1,059
News Archive
silversurfer
silversurfer
silversurfer
    • Like
    • +Reputation
RubyGems Packages Laced with Bitcoin-Stealing Malware
Replies
1
Views
1,144
News Archive
upnorth
upnorth

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top