Daily Links

list of the links of the day

Phylum Discovers Aggressive Attack on PyPI Attempting to Deliver Rust Executable - phylum

🚨 This appears to be an ongoing attack. As of the morning of 2/24/2023 an additional 600+ packages have been published by this actor for a total of 1,130+ packages.

On the morning of February 23, 2023, Phylum's automated risk detection platform started lighting up with another series of strange publications on PyPI. After digging into it, we were able to link it up to another smaller campaign fro...