Tech

Malicious Python packages are stealing vital data, and have been downloaded thousands of times already

Share
Share


  • Researchers found three malicious PyPI packages, two targeting bitcoin developers, and one WooCommerce stores
  • Two are designed to steal data, and the third to test for valid credit cards
  • All three have since been removed from the repository

Multiple open source software packages on the Python Package Index (PyPI) repository were found to be malicious, likely compromising thousands of devices, experts have warned.

Cybersecurity researchers at ReversingLabs found two malicious packages, “bitcoinlibdbfix” and “bitcoinlib-dev”, which cumulatively have around 2,000 downloads.

Share

Leave a comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Articles
Coinbase 2FA error fixed after many believed their account was hacked
Tech

Coinbase 2FA error fixed after many believed their account was hacked

Coinbase users spotted a flaw in their Account Activity logs The logs...

Spain emerges as Europe’s workplace productivity powerhouse, UK lags behind
Tech

Spain emerges as Europe’s workplace productivity powerhouse, UK lags behind

Nine in 10 Spanish employees report high productivity Productivity is partly responsible...