URL has been copied successfully!
Malicious Python Package Exfiltrates AWS Credentials
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Malicious Python Package Exfiltrates AWS Credentials

by

Andy Stern
in

Tags: , , , , , ,

Developers’ Credentials Stolen via Typosquatted ‘Fabric’ Library. A malicious Python package that mimics a popular SSH automation library has been live on PyPi since 2021 and delivers payloads that steal credentials and create backdoors. The package steals AWS access and secret keys, sending them to a remote server operated through a VPN in Paris

First seen on govinfosecurity.com

Jump to article: www.govinfosecurity.com/malicious-python-package-exfiltrates-aws-credentials-a-26789

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Targeted PyPi Package Steals Google Cloud Credentials from macOS Devs
  2. Malicious PyPI Package Targets macOS to Steal Google Cloud Credentials
  3. Point of entry: Why hackers target stolen credentials for initial access
  4. Ransomware Attack Via Unpatched Vulnerabilities Are Brutal: New Survey