Malicious PyPI Packages Found Exfiltrating Data and Opening Reverse Shells

Details of Packages

Packages with malicious behaviour

Detailed Analysis of Malicious Behaviour

10Cent10 Package setup.py
Snippet from 12Cent setup.py

Impact of Malicious Packages

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store