Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
Two malware campaigns weaponize open-source software to target executives and cloud systems, combining social engineering ...
Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results