
blog.phylum.io/cloud-provider-credentials-targeted-in-new-pypi-malware-campaign
Preview meta tags from the blog.phylum.io website.
Linked Hostnames
9- 6 links toblog.phylum.io
- 3 links topypi.org
- 1 link todiscord.gg
- 1 link todocs.phylum.io
- 1 link tonews.ycombinator.com
- 1 link tophylum.io
- 1 link totwitter.com
- 1 link towww.phylum.io
Thumbnail

Search Engine Appearance
Cloud Provider Credentials Targeted in New PyPI Malware Campaign
Over the weekend, Phylum’s automated risk detection alerted us to a series of publications surrounding packages on PyPI, all purporting to be some kind of cloud provider SDK or helper package. While these packages do, in fact, provide the purported functionality, they also surreptitiously ship the credentials off to
Bing
Cloud Provider Credentials Targeted in New PyPI Malware Campaign
Over the weekend, Phylum’s automated risk detection alerted us to a series of publications surrounding packages on PyPI, all purporting to be some kind of cloud provider SDK or helper package. While these packages do, in fact, provide the purported functionality, they also surreptitiously ship the credentials off to
DuckDuckGo

Cloud Provider Credentials Targeted in New PyPI Malware Campaign
Over the weekend, Phylum’s automated risk detection alerted us to a series of publications surrounding packages on PyPI, all purporting to be some kind of cloud provider SDK or helper package. While these packages do, in fact, provide the purported functionality, they also surreptitiously ship the credentials off to
General Meta Tags
9- titleCloud Provider Credentials Targeted in New PyPI Malware Campaign
- charsetutf-8
- viewportwidth=device-width, initial-scale=1
- referrerno-referrer-when-downgrade
- article:published_time2023-10-10T01:02:00.000Z
Open Graph Meta Tags
8- og:site_namePhylum Research | Software Supply Chain Security
- og:typearticle
- og:titleCloud Provider Credentials Targeted in New PyPI Malware Campaign
- og:descriptionOver the weekend, Phylum’s automated risk detection alerted us to a series of publications surrounding packages on PyPI, all purporting to be some kind of cloud provider SDK or helper package. While these packages do, in fact, provide the purported functionality, they also surreptitiously ship the credentials off to
- og:urlhttps://blog.phylum.io/cloud-provider-credentials-targeted-in-new-pypi-malware-campaign/
Twitter Meta Tags
11- twitter:cardsummary_large_image
- twitter:titleMalicious PyPI packages stealing cloud credentials
- twitter:descriptionMalware packages found on PyPI stealing cloud credentials from unsuspecting developers.
- twitter:urlhttps://blog.phylum.io/cloud-provider-credentials-targeted-in-new-pypi-malware-campaign/
- twitter:imagehttps://blog.phylum.io/content/images/size/w1200/2023/10/clouds.png
Link Tags
12- alternatehttps://blog.phylum.io/rss/
- canonicalhttps://blog.phylum.io/cloud-provider-credentials-targeted-in-new-pypi-malware-campaign/
- iconhttps://blog.phylum.io/content/images/size/w256h256/2023/03/phylum-logo.png
- preconnecthttps://fonts.googleapis.com
- preconnecthttps://fonts.gstatic.com
Links
16- https://blog.phylum.io/author/phylum-research-team
- https://blog.phylum.io/python-crypto-library-updated-to-steal-private-keys
- https://blog.phylum.io/q3-2024-evolution-of-software-supply-chain-security-report
- https://blog.phylum.io/supply-chain-security-typosquat-campaign-targeting-puppeteer-users
- https://blog.phylum.io/tag/insights