The Information Highway

The Information Highway

Python Package Index

Malicious PyPI Package 'Fabrice' Found Stealing AWS Keys from Thousands of Developers

Thursday, 07 November 2024

Ravie Lakshmanan

Security News

aw_20241109-185929_1

Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) that has racked up thousands of downloads for over three years while stealthily exfiltrating developers' Amazon Web Services (AWS) credentials.

Continue reading

446 Hits

0 Comments

Tags:

Cybersecurity researchers package Python Package Index exfiltrating developers Amazon Web Services

Blog Categories
Security 453 post(s) News 315 post(s) Technology 153 post(s) Compliance 27 post(s) Cloud Computing 10 post(s) Uncategorized 1 post(s) Business Continuity & Disaster Recovery 1 post(s)

You May Also Like

Microsoft: Windows Kernel CVE-2023-32019 fix is disabled by default

Microsoft has released an optional fix to address a Kernel information disclosure vulnerability affe...

StopCrypt: Most widely distributed ransomware evolves to evade detection

A new variant of StopCrypt ransomware (aka STOP) was spotted in the wild, employing a multi-stage ex...

23andMe to pay $30 million in genetics data breach settlement

DNA testing giant 23andMe has agreed to pay $30 million to settle a lawsuit over a data breach that ...

New Black Basta decryptor exploits ransomware flaw to recover files

Researchers have created a decryptor that exploits a flaw in Black Basta ransomware, allowing victim...

Microsoft to let Windows 10 home users buy Extended Security Updates

Microsoft says that all Windows 10 customers (including home users) will be able to pay for three ex...

Blog Archive

Recent Comments
No comments yet.

Recent Blogs

08 December 2024

QR codes bypass browser isolation for malicious C2 communication

06 December 2024

Microsoft expands Recall preview to Intel and AMD Copilot+ PCs

04 December 2024

Microsoft says having a TPM is "non-negotiable" for Windows 11

04 December 2024

FBI shares tips on how to tackle AI-powered fraud schemes

04 December 2024

BT unit took servers offline after Black Basta ransomware breach

Tag Cloud

Top Breaches Cost ($) of 2024

HEALTHCARE

FINANCIAL

INDUSTRIAL

TECHNOLOGY

ENERGY

Source: IBM Cost of a Data Breach Report 2024