Launch Week Day 1: Announcing Security Design Review

Malicious code in selfpyping (PyPI)

MAL-2023-6529

Published Feb 25, 2023 · Modified Aug 24, 2023

Description

__

Source: checkmarx (a34872f7720643f9e65da56bd266e8a0e0fc281426efbd4db9236d36a296f670)

EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware

References

ARTICLE https://medium.com/checkmarx-security/the-skeleton-squad-tracing-the-origins-and-scope-of-5000-malicious-packages-on-pypi-7516c16e4da9

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes