[BleepingComputer] PyPI packages caught stealing credit card numbers, Discord tokens

The Python Package Index (PyPI) registry has removed several Python packages this week aimed at stealing users’ credit card numbers, Discord tokens, and granting arbitrary code execution capabilities to attackers. These malicious packages were downloaded over 30,000 times according to the researchers who caught them. […]

Source: Read More (BleepingComputer)

You might be interested in …

[HackerNews] Bugs in Managed DNS Services Cloud Let Attackers Spy On DNS Traffic

All posts, HackerNews

Cybersecurity researchers have disclosed a new class of vulnerabilities impacting major DNS-as-a-Service (DNSaaS) providers that could allow attackers to exfiltrate sensitive information from corporate networks. “We found a simple loophole that allowed us to intercept a portion of worldwide dynamic DNS traffic going through managed DNS providers like Amazon and Google,” researchers Shir Tamari Source: […]

Read More

[BleepingComputer] Conti ransomware also targeted Ireland’s Department of Health

The Conti ransomware gang failed to encrypt the systems of Ireland’s Department of Health (DoH) despite breaching its network and droppingĀ Cobalt Strike beacons to deploy their malware across the network. […] Source: Read More (BleepingComputer)

Read More

[ThreatPost] Cyber Attack Cripples Iranian Fuel Distribution Network

All posts, ThreatPost

The incident triggered shutdowns at pumps across the country as attackers flashed the phone number of Supreme Leader Ali Khamenei across video screens. Source: Read More (Threatpost)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.