Lazarus Exploits Typos to Sneak PyPI Malware into Dev Systems

5 months ago [email protected] (The Hacker News)
Lazarus Exploits Typos to Sneak PyPI Malware into Dev Systems


The notorious North Korean state-backed hacking group Lazarus uploaded four packages to the Python Package Index (PyPI) repository with the goal of infecting developer systems with malware.
The packages, now taken down, are pycryptoenv, pycryptoconf, quasarlib, and swapmempool. They have been collectively downloaded 3,269 times, with pycryptoconf accounting for the most

The post “Lazarus Exploits Typos to Sneak PyPI Malware into Dev Systems” appeared first on The Hacker News

Source:The Hacker News – [email protected] (The Hacker News)

Tags: ,

More Stories

French Authorities Launch Operation to Remove PlugX Malware from Infected Systems

4 hours ago [email protected] (The Hacker News)

Malicious PyPI Package Targets macOS to Steal Google Cloud Credentials

4 hours ago [email protected] (The Hacker News)

This AI-Powered Cybercrime Service Bundles Phishing Kits with Malicious Android Apps

21 hours ago [email protected] (The Hacker News)

Offensive AI: The Sine Qua Non of Cybersecurity

23 hours ago [email protected] (The Hacker News)

U.S. DoJ Indicts North Korean Hacker for Ransomware Attacks on Hospitals

1 day ago [email protected] (The Hacker News)

Ongoing Cyberattack Targets Exposed Selenium Grid Services for Crypto Mining

1 day ago [email protected] (The Hacker News)