Danterious@lemmy.dbzer0.com to

Open Source@lemmy.ml · 6 months ago

Malicious Go Binary Delivered via Steganography in PyPI

3

1

Malicious Go Binary Delivered via Steganography in PyPI

Danterious@lemmy.dbzer0.com to

Open Source@lemmy.ml · 6 months ago

3

On May 10, 2024, Phylum’s automated risk detection platform alerted us to a suspicious publication on PyPI. The package was called requests-darwin-lite and appeared to be a fork of the ever-popular requests package with a few key differences, most notably the inclusion of a malicious Go binary packed into

Chat

bizdelnick@lemmy.ml
link
fedilink
arrow-up
1·
6 months ago
It is not steganography. It’s just cat original.png trojan > malicious.png.
- Markaos@lemmy.one
  link
  fedilink
  arrow-up
  1·
  6 months ago
  See? Hidden in an image, clearly that’s steganography! /s

Open Source@lemmy.ml

opensource@lemmy.ml

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !opensource@lemmy.ml

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Posts must be relevant to the open source ideology
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

685 users / day
1.78K users / week
4.35K users / month
10.7K users / 6 months
3 local subscribers
31K subscribers
649 Posts
7.59K Comments
Modlog