this post was submitted on 06 Sep 2024
9 points (100.0% liked)

Pulse of Truth

468 readers
63 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 1 year ago
MODERATORS
[email protected]
9
New PyPI Supply Chain Attack Technique Puts 22,000 Packages at Risk (informationsecuritybuzz.com)
submitted 1 month ago by [email protected] to c/[email protected]
0 comments fedilink hide all child comments
 

A newly discovered PyPI hijack technique called “Revival Hijack” has been exploited in the wild, posing a significant threat to thousands of Python packages. Identified by JFrog’s security research team, the method takes advantage of a loophole in the PyPI software registry that allows attackers to re-register package names that have been removed by their [...]

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here