HK
Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Top
New
Best
Ask
Show
Jobs
Request
1.
▲
Dozens of malicious PyPI packages discovered targeting developers
blog.phylum.io
320 comments
4 years ago
louislang
754 points
2.
▲
70% of new NPM packages in last 6 months were spam
blog.phylum.io
111 comments
2 years ago
louislang
225 points
3.
▲
Aggressive Attack on PyPI Attempting to Deliver Rust Executable
blog.phylum.io
102 comments
3 years ago
iamspoilt
148 points
4.
▲
Rust Malware Staged on Crates.io
blog.phylum.io
58 comments
3 years ago
inferiorhuman
93 points
5.
▲
Malicious Python packages replace crypto addresses in developer clipboards
blog.phylum.io
46 comments
4 years ago
sbf501
92 points
6.
▲
Mischievous NPM Publications
blog.phylum.io
25 comments
3 years ago
jwalton
78 points
7.
▲
Cryptocurrency Miner Masquerading as GCC Compiler Found in NPM Package
blog.phylum.io
4 comments
3 years ago
freedude
18 points
8.
▲
PyPI Suspends New User and Project Creation in Wake of Malware Campaign
blog.phylum.io
7 comments
2 years ago
louislang
16 points
9.
▲
Crypto-Themed NPM Packages Found Delivering Stealthy Malware
blog.phylum.io
2 comments
3 years ago
arsabulhaiue
15 points
10.
▲
Using Entropy to Identify Obfuscated Malicious Code
blog.phylum.io
5 comments
5 years ago
MiffedIt
14 points
11.
▲
Python Crypto Library Updated to Steal Private Keys
blog.phylum.io
1 comment
2 years ago
batmaniam
9 points
12.
▲
Ransomware Python Packages Currently Being Published to PyPI
blog.phylum.io
3 comments
4 years ago
louislang
7 points
13.
▲
Malicious Python Code Gains Execution
blog.phylum.io
discuss
2 years ago
louislang
6 points
14.
▲
Fake Developer Jobs Laced with Malware
blog.phylum.io
1 comment
2 years ago
pcloadletter_
5 points
15.
▲
Rust Malware Staged on Crates.io
blog.phylum.io
discuss
3 years ago
1MachineElf
5 points
16.
▲
Sophisticated, Highly-Targeted Attacks Continue to Plague NPM
blog.phylum.io
discuss
3 years ago
mcgin
5 points
17.
▲
Disrupting a PyPI Software Supply Chain Threat Actor
blog.phylum.io
discuss
4 years ago
louislang
5 points
18.
▲
Malicious Go Binary Delivered via Steganography in PyPI
blog.phylum.io
discuss
2 years ago
campuscodi
4 points
19.
▲
Highly-Targeted Attacks Continue to Plague NPM
blog.phylum.io
discuss
3 years ago
louislang
4 points
20.
▲
Active Typosquatting Campaign Against NPM
blog.phylum.io
discuss
4 years ago
louislang
4 points
21.
▲
Spark and Rust – How to Build Fast, Distributed and Flexible Analytics Pipelines
blog.phylum.io
discuss
5 years ago
MiffedIt
4 points
22.
▲
Malicious Actors Use Unicode Support in Python to Evade Detection
blog.phylum.io
1 comment
3 years ago
rrampage
3 points
23.
▲
Malicious Go Binary Delivered via Steganography in PyPI
blog.phylum.io
discuss
2 years ago
awaythrow999
3 points
24.
▲
Spam: Unintended Consequences of Open Source Sustainability Platforms
blog.phylum.io
discuss
2 years ago
louislang
3 points
25.
▲
Malicious Actors Use Unicode Support in Python to Evade Detection
blog.phylum.io
discuss
3 years ago
todsacerdoti
3 points
26.
▲
A PyPI typosquatting campaign post-mortem
blog.phylum.io
discuss
3 years ago
louislang
3 points
27.
▲
Using Entropy to Identify Obfuscated Malicious Code
blog.phylum.io
discuss
5 years ago
rdpintqogeogsaa
3 points
28.
▲
Typosquat Campaign Targeting NPM Developers
blog.phylum.io
discuss
2 years ago
gnabgib
2 points
29.
▲
Malicious Nuget Packages Found Delivering SeroXen Malware
blog.phylum.io
discuss
3 years ago
louislang
2 points
30.
▲
June’s Sophisticated NPM Attack Attributed to North Korea
blog.phylum.io
discuss
3 years ago
thunderbong
2 points
More