"New Malicious PyPI Packages Caught Using Covert Side-Loading Tactics"

Researchers have found two malicious packages on the Python Package Index (PyPI) repository that used a technique known as DLL side-loading to avoid detection by security software and execute malicious code. The packages, NP6HelperHttptest and NP6HelperHttper, were downloaded 537 and 166 times before their takedown. According to ReversingLabs researcher Petar Kirhmajer, the latest discovery is an example of DLL side-loading carried out by an open-source package, suggesting that the scope of software supply chain threats is growing. This article continues to discuss the side-loading tactics used by new malicious PyPI packages.

THN reports "New Malicious PyPI Packages Caught Using Covert Side-Loading Tactics"

Submitted by grigby1

Submitted by Gregory Rigby on