Malicious PyPI Package Removes netstat, Tampers with SSH Config

A recent report by Sonatype security researcher Ax Sharma highlights newly discovered malicious packages on the PyPI registry, including aptx, which can install the Meterpreter trojan disguised as pip, delete the netstat system utility, and tamper with…


This content originally appeared on InfoQ - JavaScript and was authored by Sergio De Simone

A recent report by Sonatype security researcher Ax Sharma highlights newly discovered malicious packages on the PyPI registry, including aptx, which can install the Meterpreter trojan disguised as pip, delete the netstat system utility, and tamper with SSH authorized_keys file.

By Sergio De Simone


This content originally appeared on InfoQ - JavaScript and was authored by Sergio De Simone


Print Share Comment Cite Upload Translate Updates
APA

Sergio De Simone | Sciencx (2023-02-12T21:00:00+00:00) Malicious PyPI Package Removes netstat, Tampers with SSH Config. Retrieved from https://www.scien.cx/2023/02/12/malicious-pypi-package-removes-netstat-tampers-with-ssh-config/

MLA
" » Malicious PyPI Package Removes netstat, Tampers with SSH Config." Sergio De Simone | Sciencx - Sunday February 12, 2023, https://www.scien.cx/2023/02/12/malicious-pypi-package-removes-netstat-tampers-with-ssh-config/
HARVARD
Sergio De Simone | Sciencx Sunday February 12, 2023 » Malicious PyPI Package Removes netstat, Tampers with SSH Config., viewed ,<https://www.scien.cx/2023/02/12/malicious-pypi-package-removes-netstat-tampers-with-ssh-config/>
VANCOUVER
Sergio De Simone | Sciencx - » Malicious PyPI Package Removes netstat, Tampers with SSH Config. [Internet]. [Accessed ]. Available from: https://www.scien.cx/2023/02/12/malicious-pypi-package-removes-netstat-tampers-with-ssh-config/
CHICAGO
" » Malicious PyPI Package Removes netstat, Tampers with SSH Config." Sergio De Simone | Sciencx - Accessed . https://www.scien.cx/2023/02/12/malicious-pypi-package-removes-netstat-tampers-with-ssh-config/
IEEE
" » Malicious PyPI Package Removes netstat, Tampers with SSH Config." Sergio De Simone | Sciencx [Online]. Available: https://www.scien.cx/2023/02/12/malicious-pypi-package-removes-netstat-tampers-with-ssh-config/. [Accessed: ]
rf:citation
» Malicious PyPI Package Removes netstat, Tampers with SSH Config | Sergio De Simone | Sciencx | https://www.scien.cx/2023/02/12/malicious-pypi-package-removes-netstat-tampers-with-ssh-config/ |

Please log in to upload a file.



There are no updates yet.
Click the Upload button above to add an update.

You must be logged in to translate posts. Please log in or register.

Related Posts