python package index Archives - Developer Tech News https://www.developer-tech.com/news/tag/python-package-index/ Gaming, Apps, HTML5, Java, PHP, C#, .net, IOT Thu, 28 Mar 2024 12:52:55 +0000 en-GB hourly 1 https://www.developer-tech.com/wp-content/uploads/sites/3/2020/09/dev-icon-60x60.png python package index Archives - Developer Tech News https://www.developer-tech.com/news/tag/python-package-index/ 32 32 PyPI suspends registrations amid malware attack https://www.developer-tech.com/news/2024/mar/28/pypi-suspends-registrations-amid-malware-attack/ https://www.developer-tech.com/news/2024/mar/28/pypi-suspends-registrations-amid-malware-attack/#respond Thu, 28 Mar 2024 12:52:52 +0000 https://www.developer-tech.com/?p=45836 The Python Package Index (PyPI) has suspended new project creation and user registration to mitigate an ongoing malware upload campaign. This move comes as security researchers at Checkmarx uncovered a campaign involving multiple malicious packages related to the same threat actors. The attackers are targeting victims through typosquatting attacks, tricking users into installing malicious Python... Read more »

The post PyPI suspends registrations amid malware attack appeared first on Developer Tech News.

]]>
https://www.developer-tech.com/news/2024/mar/28/pypi-suspends-registrations-amid-malware-attack/feed/ 0
Malicious PyPI package discovered in ongoing ‘PaperPin’ campaign https://www.developer-tech.com/news/2023/aug/04/malicious-pypi-package-ongoing-paperpin-campaign/ https://www.developer-tech.com/news/2023/aug/04/malicious-pypi-package-ongoing-paperpin-campaign/#respond Fri, 04 Aug 2023 11:05:45 +0000 https://www.developer-tech.com/?p=44995 In a recent analysis conducted by Sonatype, a malicious Python Package Index (PyPI) package named ‘VMConnect’ was discovered masquerading as the legitimate VMware vSphere connector module ‘vConnector’. The counterfeit package was found to contain sinister code designed to compromise users’ systems. Further investigation revealed an ongoing campaign involving additional packages like “ethter” and “quantiumbase,” all... Read more »

The post Malicious PyPI package discovered in ongoing ‘PaperPin’ campaign appeared first on Developer Tech News.

]]>
https://www.developer-tech.com/news/2023/aug/04/malicious-pypi-package-ongoing-paperpin-campaign/feed/ 0
PyPI suspends new projects and users due to malicious activity https://www.developer-tech.com/news/2023/may/22/pypi-suspends-new-projects-and-users-malicious-activity/ https://www.developer-tech.com/news/2023/may/22/pypi-suspends-new-projects-and-users-malicious-activity/#respond Mon, 22 May 2023 15:31:24 +0000 https://www.developer-tech.com/?p=44601 The PyPI (Python Package Index) team has temporarily suspended new projects and users on their platform due to malicious activity. This surge in malicious activity aligns with a larger trend observed across several open-source registries in recent months. Notably, incidents such as the flood of malicious packages on the NPM JavaScript package manager and a... Read more »

The post PyPI suspends new projects and users due to malicious activity appeared first on Developer Tech News.

]]>
https://www.developer-tech.com/news/2023/may/22/pypi-suspends-new-projects-and-users-malicious-activity/feed/ 0