Security News > 2024 > February > Lazarus Exploits Typos to Sneak PyPI Malware into Dev Systems
2024-02-29 08:17
The notorious North Korean state-backed hacking group Lazarus uploaded four packages to the Python Package Index (PyPI) repository with the goal of infecting developer systems with malware. The packages, now taken down, are pycryptoenv, pycryptoconf, quasarlib, and swapmempool. They have been collectively downloaded 3,269 times, with pycryptoconf accounting for the most
News URL
https://thehackernews.com/2024/02/lazarus-exploits-typos-to-sneak-pypi.html
Related news
- Linux systems targeted with stealthy “Perfctl” cryptomining malware (source)
- GoldenJackal Target Embassies and Air-Gapped Systems Using Malware Toolsets (source)
- European govt air-gapped systems breached using custom malware (source)
- Moscow-adjacent GoldenJackal gang strikes air-gapped systems with custom malware (source)
- North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware (source)
- macOS HM Surf vuln might already be under exploit by major malware family (source)
- Adversarial groups adapt to exploit systems in new ways (source)
- VEILDrive Attack Exploits Microsoft Services to Evade Detection and Distribute Malware (source)
- SteelFox and Rhadamanthys Malware Use Copyright Scams, Driver Exploits to Target Victims (source)
- Cybercriminals Use Excel Exploit to Spread Fileless Remcos RAT Malware (source)