blog.phylum.io/cloud-provider-credentials-targeted-in-new-pypi-malware-campaign

Preview meta tags from the blog.phylum.io website.

Linked Hostnames

9

Thumbnail

Search Engine Appearance

Google

https://blog.phylum.io/cloud-provider-credentials-targeted-in-new-pypi-malware-campaign

Cloud Provider Credentials Targeted in New PyPI Malware Campaign

Over the weekend, Phylum’s automated risk detection alerted us to a series of publications surrounding packages on PyPI, all purporting to be some kind of cloud provider SDK or helper package. While these packages do, in fact, provide the purported functionality, they also surreptitiously ship the credentials off to



Bing

Cloud Provider Credentials Targeted in New PyPI Malware Campaign

https://blog.phylum.io/cloud-provider-credentials-targeted-in-new-pypi-malware-campaign

Over the weekend, Phylum’s automated risk detection alerted us to a series of publications surrounding packages on PyPI, all purporting to be some kind of cloud provider SDK or helper package. While these packages do, in fact, provide the purported functionality, they also surreptitiously ship the credentials off to



DuckDuckGo

https://blog.phylum.io/cloud-provider-credentials-targeted-in-new-pypi-malware-campaign

Cloud Provider Credentials Targeted in New PyPI Malware Campaign

Over the weekend, Phylum’s automated risk detection alerted us to a series of publications surrounding packages on PyPI, all purporting to be some kind of cloud provider SDK or helper package. While these packages do, in fact, provide the purported functionality, they also surreptitiously ship the credentials off to

  • General Meta Tags

    9
    • title
      Cloud Provider Credentials Targeted in New PyPI Malware Campaign
    • charset
      utf-8
    • viewport
      width=device-width, initial-scale=1
    • referrer
      no-referrer-when-downgrade
    • article:published_time
      2023-10-10T01:02:00.000Z
  • Open Graph Meta Tags

    8
    • og:site_name
      Phylum Research | Software Supply Chain Security
    • og:type
      article
    • og:title
      Cloud Provider Credentials Targeted in New PyPI Malware Campaign
    • og:description
      Over the weekend, Phylum’s automated risk detection alerted us to a series of publications surrounding packages on PyPI, all purporting to be some kind of cloud provider SDK or helper package. While these packages do, in fact, provide the purported functionality, they also surreptitiously ship the credentials off to
    • og:url
      https://blog.phylum.io/cloud-provider-credentials-targeted-in-new-pypi-malware-campaign/
  • Twitter Meta Tags

    11
    • twitter:card
      summary_large_image
    • twitter:title
      Malicious PyPI packages stealing cloud credentials
    • twitter:description
      Malware packages found on PyPI stealing cloud credentials from unsuspecting developers.
    • twitter:url
      https://blog.phylum.io/cloud-provider-credentials-targeted-in-new-pypi-malware-campaign/
    • twitter:image
      https://blog.phylum.io/content/images/size/w1200/2023/10/clouds.png
  • Link Tags

    12
    • alternate
      https://blog.phylum.io/rss/
    • canonical
      https://blog.phylum.io/cloud-provider-credentials-targeted-in-new-pypi-malware-campaign/
    • icon
      https://blog.phylum.io/content/images/size/w256h256/2023/03/phylum-logo.png
    • preconnect
      https://fonts.googleapis.com
    • preconnect
      https://fonts.gstatic.com

Links

16