Source |
Bleeping Computer |
Identifiant |
5382697 |
Date de publication |
2022-06-25 11:32:26 (vue: 2022-06-25 16:06:26) |
Titre |
PyPi packages caught sending stolen AWS keys to unsecured sites |
Texte |
Multiple malicious Python packages available on the PyPI repository were caught stealing sensitive information like AWS credentials and transmitting it to publicly exposed endpoints accessible by anyone. [...] |
Envoyé |
Oui |
Condensat |
accessible anyone available aws caught credentials endpoints exposed information keys like malicious multiple packages publicly pypi python repository sending sensitive sites stealing stolen transmitting unsecured |
Tags |
|
Stories |
|
Notes |
|
Move |
|
Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2022-06-25 11:32:26 |
(Déjà vu) PyPi python packages caught sending stolen AWS keys to unsecured sites (lien direct) |
Multiple malicious Python packages available on the PyPI repository were caught stealing sensitive information like AWS credentials and transmitting it to publicly exposed endpoints accessible by anyone. [...] |
|
|
|