ภาษาไทย
English Indonesia Türkçe Deutsch Español Português Pусский Français Italiano Nederlands Polski العربية ไทย Tiếng Việt 繁體中文 简体中文 日本語 한국어

#pypi ผลการค้นหา

cod3nym's profile picture. Threat Researcher | Detection Engineer @nextronsystems @nextronresearch #Yara enthusiast | C# Developer
Jonathan Peters
@cod3nym
2 ธ.ค.

We @nextronresearch scan many public repos like npm, pypi, vscode marketplace etc. And we find a lot of shitty malware :) Example: pypi.org/project/multit… SHA256: 79cc98d0831e7b6a191000ec997ebc1853b1f6cc1190dbb855b97d7bf418c287 #PyPi

cod3nym's tweet image. We @nextronresearch scan many public repos like npm, pypi, vscode marketplace etc. And we find a lot of shitty malware :) Example: pypi.org/project/multit… SHA256: 79cc98d0831e7b6a191000ec997ebc1853b1f6cc1190dbb855b97d7bf418c287 #PyPi
0
8
14
1
1พัน
bzvr_'s profile picture. Senior Security Researcher @ Kaspersky, GReAT | Drovosec CTF team | Tweets are my own
Leonid Bezvershenko
@bzvr_
20 พ.ย. 2024

🚨 We discovered two malicious Python packages in #PyPI repository that remained undetected for over a year. These packages mimicked tools for working with popular AI language models (#ChatGPT and #Claude), silently exfiltrating data and compromising developer environments.…

bzvr_'s tweet image. 🚨 We discovered two malicious Python packages in #PyPI repository that remained undetected for over a year. These packages mimicked tools for working with popular AI language models (#ChatGPT and #Claude), silently exfiltrating data and compromising developer environments.…
15
275
966
361
161พัน
plastic96_'s profile picture. • Speak English, Chinese & Ancient Greek • Taught Jimi Hendrix how to play guitar • Been on the moon, twice • Responsible
Akshita Dixit
 @plastic96_
24 ส.ค. 2024

I was annoyed of having to write README files for my projects. So I went ahead and created a CLI tool to auto-generate README files for any project regardless of programming language! 📜✨ It creates a comprehensive README based on your project. Check it out on #PyPI and #npm

plastic96_'s tweet image. I was annoyed of having to write README files for my projects. So I went ahead and created a CLI tool to auto-generate README files for any project regardless of programming language! 📜✨ It creates a comprehensive README based on your project. Check it out on #PyPI and #npm
plastic96_'s tweet image. I was annoyed of having to write README files for my projects. So I went ahead and created a CLI tool to auto-generate README files for any project regardless of programming language! 📜✨ It creates a comprehensive README based on your project. Check it out on #PyPI and #npm
18
11
133
76
12พัน
ThePSF's profile picture. The nonprofit organization behind the Python programming language. For help with Python code: https://t.co/XDHPttz2Xv On Mastodon: @ThePSF@fosstodon.org
Python Software Foundation
@ThePSF
29 ต.ค.

PyPI serves billions of requests daily- but sustaining it isn’t free. The PSF joined the OpenSSF & others in calling for organizations to invest in sustainable open infrastructure. Learn what this means for #PyPI, the PSF, & how our community can pitch in: pyfound.blogspot.com/2025/10/open-i…

15
10
63
3
10พัน
JFrogSecurity's profile picture. The JFrog Security Research Team empowers developers and companies to excel by identifying, prioritizing, and mitigating software risks.
JFrog Security
@JFrogSecurity
4 ก.ย. 2024

🚨Over 22k packages are vulnerable (or over 120k by looser measurement) to a new #SoftwareSupplyChain attack vector: Hijacking abandoned #PyPI packages. Potentially critical for orgs relying on abandoned packages, learn more about our team's discovery: jfrog.co/4gpsbUH

JFrogSecurity's tweet image. 🚨Over 22k packages are vulnerable (or over 120k by looser measurement) to a new #SoftwareSupplyChain attack vector: Hijacking abandoned #PyPI packages. Potentially critical for orgs relying on abandoned packages, learn more about our team's discovery: jfrog.co/4gpsbUH
1
8
12
0
747
SethKingHi's profile picture. Senior Security Researcher @kaspersky GReAT, tweets and opinions are my own.
SKII
@SethKingHi
24 ก.ค.

#OceanLotus #APT32 #PyPi uuid32_utils-1.x.x-py3-none-win32.whl cf3f59e2c4c8767697ea46475171697c 91a476fea45abc8b208e0a9e3293f774 a7a0add66b205967562c1fa9643b8421 22538214a3c917ff3b13a9e2035ca521 02f4701559fc40067e69bb426776a54f 5598baa59c716590d8841c6312d8349e Backward.dll…

SethKingHi's tweet image. #OceanLotus #APT32 #PyPi uuid32_utils-1.x.x-py3-none-win32.whl cf3f59e2c4c8767697ea46475171697c 91a476fea45abc8b208e0a9e3293f774 a7a0add66b205967562c1fa9643b8421 22538214a3c917ff3b13a9e2035ca521 02f4701559fc40067e69bb426776a54f 5598baa59c716590d8841c6312d8349e Backward.dll…
SethKingHi's tweet image. #OceanLotus #APT32 #PyPi uuid32_utils-1.x.x-py3-none-win32.whl cf3f59e2c4c8767697ea46475171697c 91a476fea45abc8b208e0a9e3293f774 a7a0add66b205967562c1fa9643b8421 22538214a3c917ff3b13a9e2035ca521 02f4701559fc40067e69bb426776a54f 5598baa59c716590d8841c6312d8349e Backward.dll…
SethKingHi's tweet image. #OceanLotus #APT32 #PyPi uuid32_utils-1.x.x-py3-none-win32.whl cf3f59e2c4c8767697ea46475171697c 91a476fea45abc8b208e0a9e3293f774 a7a0add66b205967562c1fa9643b8421 22538214a3c917ff3b13a9e2035ca521 02f4701559fc40067e69bb426776a54f 5598baa59c716590d8841c6312d8349e Backward.dll…
2
6
22
2
3พัน
ReversingLabs's profile picture. ReversingLabs is the trusted name in file and software security. RL - Trust Delivered.
ReversingLabs
@ReversingLabs
7 ก.ค.

⚠️🧵 RL threat researchers detected an impersonation attempt targeting a popular #PyPI cloudscraper package with more than 50M downloads. It has the suffix "safe" added, but it is all but safe: secure.software/pypi/packages/…

ReversingLabs's tweet image. ⚠️🧵 RL threat researchers detected an impersonation attempt targeting a popular #PyPI cloudscraper package with more than 50M downloads. It has the suffix "safe" added, but it is all but safe: secure.software/pypi/packages/…
1
3
7
2
779
xavierfiechter's profile picture. I'm building @labelbase_space, the all-in-one label and coin control management service for Bitcoin, and focusing on other projects related to BIP-329.
Xavier "The Label Guy" Fiechter
@xavierfiechter
26 ก.ย.

🎉 Just published bip329 v1.0.0 to PyPI! pip install bip329==1.0.0 #Python #PyPI #OpenSource #bip329

xavierfiechter's tweet image. 🎉 Just published bip329 v1.0.0 to PyPI! pip install bip329==1.0.0 #Python #PyPI #OpenSource #bip329
1
1
3
0
189
ReversingLabs's profile picture. ReversingLabs is the trusted name in file and software security. RL - Trust Delivered.
ReversingLabs
@ReversingLabs
24 มิ.ย.

It's been a busy day for us! ⚠️🧵 RL's automated detection system flagged a new malicious #PyPI package: secure.software/pypi/packages/… While name would suggest this is a ChatGPT related project, it actually contains a #malware loader.

ReversingLabs's tweet image. It's been a busy day for us! ⚠️🧵 RL's automated detection system flagged a new malicious #PyPI package: secure.software/pypi/packages/… While name would suggest this is a ChatGPT related project, it actually contains a #malware loader.
1
3
2
0
413
jfrog's profile picture. Driven by a “Liquid Software” vision, the JFrog Software Supply Chain Platform powers organizations to build, manage, and distribute software quickly & securely
JFrog
@jfrog
4 ก.ย. 2024

🚨Over 22k packages are vulnerable (or over 120k by looser measurement) to a new #SoftwareSupplyChain attack vector: Hijacking abandoned #PyPI packages. Potentially critical for orgs relying on abandoned packages, learn more about our team's discovery: jfrog.co/4gpsbUH

jfrog's tweet image. 🚨Over 22k packages are vulnerable (or over 120k by looser measurement) to a new #SoftwareSupplyChain attack vector: Hijacking abandoned #PyPI packages. Potentially critical for orgs relying on abandoned packages, learn more about our team's discovery: jfrog.co/4gpsbUH
0
3
8
0
374
jfrog's profile picture. Driven by a “Liquid Software” vision, the JFrog Software Supply Chain Platform powers organizations to build, manage, and distribute software quickly & securely
JFrog
@jfrog
5 ก.ย. 2024

"This attack technique involves hijacking PyPI software packages by manipulating the option to re-register them once they're removed from #PyPI's index by the original owner," JFrog security researchers Andrey Polkovnychenko & Brian Moussalli Learn more: jfrog.co/4cSgBOK

jfrog's tweet image. "This attack technique involves hijacking PyPI software packages by manipulating the option to re-register them once they're removed from #PyPI's index by the original owner," JFrog security researchers Andrey Polkovnychenko & Brian Moussalli Learn more: jfrog.co/4cSgBOK
0
2
5
0
268
ActiveState's profile picture. ActiveState enables DevOps, InfoSec, and Development teams to improve their security posture while simultaneously increasing productivity and innovation.
ActiveState
@ActiveState
17 เม.ย. 2024

🎉 ActiveState is pleased to announce our inclusion as a Trusted Publisher to PyPI, enabling Python authors to securely publish Python packages directly via ActiveState’s Platform. Become a trusted author today: ow.ly/Z34i50RikiO #ActiveState #TrustedPublisher #PyPI

1
4
5
1
1พัน
karaage0703's profile picture. エンジニア/AIのお仕事してます/からあげ大好き/はてなブログ書いてます/色々作ってます/からあげは概念/Amazonのアソシエイトとして適格販売により収入を得ています
からあげ
@karaage0703
26 ต.ค.

🔖 Zenn過去記事投稿 自分だけのライブラリを作ってみよう! 【Pythonで自分だけのクソライブラリを作る方法】 ✅ PyPIへの公開手順を解説 ✅ パッケージ構成のベストプラクティス ✅ 実用的なライブラリ開発のコツ #Python #ライブラリ開発 #PyPI #OSS zenn.dev/karaage0703/ar…

karaage0703's tweet card. Pythonで自分だけのクソライブラリを作る方法
Pythonで自分だけのクソライブラリを作る方法
แหล่งที่มา: zenn.dev
0
4
34
21
6พัน
faissaloux's profile picture. Software Engineer / Fullstack web developer / opensource — created @termspark, @geranslator ... https://t.co/OWNpWlDucF
faissal wahabali 👌
 @faissaloux
3 ธ.ค. 2023

This is done by Termspark 🔥 Text blink, italic text and more styles support on next release (1.7.0) Wait for it! #python #pypi #opensource

0
1
2
0
43
evanderburg's profile picture. Cybersecurity, Privacy, and Tech Leader, Author, Consultant, and Speaker, Opinions are my own.
Eric Vanderburg
 @evanderburg
3 ก.พ.

#DeepSeek’s popularity exploited to push malicious packages via #PyPI securitytc.com/THlZ6L

evanderburg's tweet image. #DeepSeek’s popularity exploited to push malicious packages via #PyPI securitytc.com/THlZ6L
0
0
1
0
80
fastly's profile picture. Get more powerful websites and applications with Fastly’s edge cloud platform. We help places like Reddit, Epic Games, the NYT, and GitHub do so every day.
Fastly
@fastly
17 ก.ย.

How do you optimize package delivery for 950,000+ Python developers? Check out how we're using Individual Provider Anycast to power platforms like @PyPI, where small improvements × billions of requests = massive impact! fastly.com/blog/powering-… #fastforward #pypi

fastly's tweet image. How do you optimize package delivery for 950,000+ Python developers? Check out how we're using Individual Provider Anycast to power platforms like @PyPI, where small improvements × billions of requests = massive impact! fastly.com/blog/powering-… #fastforward #pypi
0
0
1
0
526
ReversingLabs's profile picture. ReversingLabs is the trusted name in file and software security. RL - Trust Delivered.
ReversingLabs
@ReversingLabs
21 ส.ค.

🎙️ The latest episode of ConversingLabs #podcast discusses the Spectra Assure Community Badge: A free initiative that certifies trust for #npm, #PyPI, #RubyGems & #NuGet projects. Watch it here: bit.ly/3Jf14j1

0
0
0
0
225
ไม่พบผลลัพธ์สำหรับ "#pypi"
ไม่พบผลลัพธ์สำหรับ "#pypi"
cod3nym's profile picture. Threat Researcher | Detection Engineer @nextronsystems @nextronresearch #Yara enthusiast | C# Developer
Jonathan Peters
@cod3nym
2 ธ.ค.

We @nextronresearch scan many public repos like npm, pypi, vscode marketplace etc. And we find a lot of shitty malware :) Example: pypi.org/project/multit… SHA256: 79cc98d0831e7b6a191000ec997ebc1853b1f6cc1190dbb855b97d7bf418c287 #PyPi

cod3nym's tweet image. We @nextronresearch scan many public repos like npm, pypi, vscode marketplace etc. And we find a lot of shitty malware :) Example: pypi.org/project/multit… SHA256: 79cc98d0831e7b6a191000ec997ebc1853b1f6cc1190dbb855b97d7bf418c287 #PyPi
0
8
14
1
1พัน
sekoia_io's profile picture. A #SOCplatform boosted by #AI and #threatintelligence, combining #SIEM, #SOAR, #Automation in a single solution. Used by End-users, MSSP and APIs
Sekoia.io
 @sekoia_io
24 ก.พ. 2023

💣 Among others, @sekoia_io discovered yesterday 55 #PyPI malicious packages pushed by the same Threat actor. It's not the first time that we are seeing this actor pushing this kind of malicious packages. PyPI contacted and packages removed 👌 Related packages and IoCs below ↘️

sekoia_io's tweet image. 💣 Among others, @sekoia_io discovered yesterday 55 #PyPI malicious packages pushed by the same Threat actor. It's not the first time that we are seeing this actor pushing this kind of malicious packages. PyPI contacted and packages removed 👌 Related packages and IoCs below ↘️
1
30
71
15
15พัน
unit42_jp's profile picture. パロアルトネットワークス(@PaloAltoNtwksJP) のスレットインテリジェンス & セキュリティコンサルティングチーム Unit 42 から最新のリサーチレポートとニュースをお伝えします。
Unit 42 Japan
 @unit42_jp
13 ก.ค. 2023

#PyPI 上に悪意のあるパッケージが6つ見つかりました。背後にいる攻撃者は #W4SP の攻撃を模倣し、ユーザークレデンシャル、暗号ウォレット データなどを窃取していました。オープンソース エコシステムに台頭しつつある脅威の動向を解説します。 bit.ly/44CjShk

unit42_jp's tweet image. #PyPI 上に悪意のあるパッケージが6つ見つかりました。背後にいる攻撃者は #W4SP の攻撃を模倣し、ユーザークレデンシャル、暗号ウォレット データなどを窃取していました。オープンソース エコシステムに台頭しつつある脅威の動向を解説します。 bit.ly/44CjShk
0
5
8
1
2พัน
bzvr_'s profile picture. Senior Security Researcher @ Kaspersky, GReAT | Drovosec CTF team | Tweets are my own
Leonid Bezvershenko
@bzvr_
20 พ.ย. 2024

🚨 We discovered two malicious Python packages in #PyPI repository that remained undetected for over a year. These packages mimicked tools for working with popular AI language models (#ChatGPT and #Claude), silently exfiltrating data and compromising developer environments.…

bzvr_'s tweet image. 🚨 We discovered two malicious Python packages in #PyPI repository that remained undetected for over a year. These packages mimicked tools for working with popular AI language models (#ChatGPT and #Claude), silently exfiltrating data and compromising developer environments.…
15
275
966
361
161พัน
securestep9's profile picture. @OWASPLondon Chapter Leader (#OWASP #OWASPLondon). OWASP Board Member. Application Security (#AppSec) Consultant. OWASP #Nettacker Project co-leader. #CISSP
Sam Stepanyan
 @securestep9
28 มี.ค. 2024

#Python: #PyPI temporarily shuts down new project creation and new user registration to mitigate an ongoing #malware upload campaign:

securestep9's tweet image. #Python: #PyPI temporarily shuts down new project creation and new user registration to mitigate an ongoing #malware upload campaign:
0
8
6
0
829
socradar's profile picture. Your Eyes Beyond 👁 | Transform Your Risk Perspective
SOCRadar®
@socradar
28 ก.ย. 2023

🔍Researchers have discovered a concerning surge in deceptive #npm and #PyPI packages distributed as part of a malicious campaign, aimed at extracting #Kubernetes configurations and #SSH keys. Read more👇 socradar.io/new-campaign-d… #cybersecurity #devops #supplychain #datatheft

socradar's tweet image. 🔍Researchers have discovered a concerning surge in deceptive #npm and #PyPI packages distributed as part of a malicious campaign, aimed at extracting #Kubernetes configurations and #SSH keys. Read more👇 socradar.io/new-campaign-d… #cybersecurity #devops #supplychain #datatheft
0
1
3
0
692
JFrogSecurity's profile picture. The JFrog Security Research Team empowers developers and companies to excel by identifying, prioritizing, and mitigating software risks.
JFrog Security
@JFrogSecurity
4 ก.ย. 2024

🚨Over 22k packages are vulnerable (or over 120k by looser measurement) to a new #SoftwareSupplyChain attack vector: Hijacking abandoned #PyPI packages. Potentially critical for orgs relying on abandoned packages, learn more about our team's discovery: jfrog.co/4gpsbUH

JFrogSecurity's tweet image. 🚨Over 22k packages are vulnerable (or over 120k by looser measurement) to a new #SoftwareSupplyChain attack vector: Hijacking abandoned #PyPI packages. Potentially critical for orgs relying on abandoned packages, learn more about our team's discovery: jfrog.co/4gpsbUH
1
8
12
0
747
securestep9's profile picture. @OWASPLondon Chapter Leader (#OWASP #OWASPLondon). OWASP Board Member. Application Security (#AppSec) Consultant. OWASP #Nettacker Project co-leader. #CISSP
Sam Stepanyan
 @securestep9
13 ธ.ค. 2023

#PyPI A good blog post with analysis of #malicious #Python packages in PyPI by the @eset research team: #SoftwareSupplyChainSecurity 👇 welivesecurity.com/en/eset-resear…

securestep9's tweet image. #PyPI A good blog post with analysis of #malicious #Python packages in PyPI by the @eset research team: #SoftwareSupplyChainSecurity 👇 welivesecurity.com/en/eset-resear…
0
3
6
0
335
plastic96_'s profile picture. • Speak English, Chinese & Ancient Greek • Taught Jimi Hendrix how to play guitar • Been on the moon, twice • Responsible
Akshita Dixit
 @plastic96_
24 ส.ค. 2024

I was annoyed of having to write README files for my projects. So I went ahead and created a CLI tool to auto-generate README files for any project regardless of programming language! 📜✨ It creates a comprehensive README based on your project. Check it out on #PyPI and #npm

plastic96_'s tweet image. I was annoyed of having to write README files for my projects. So I went ahead and created a CLI tool to auto-generate README files for any project regardless of programming language! 📜✨ It creates a comprehensive README based on your project. Check it out on #PyPI and #npm
plastic96_'s tweet image. I was annoyed of having to write README files for my projects. So I went ahead and created a CLI tool to auto-generate README files for any project regardless of programming language! 📜✨ It creates a comprehensive README based on your project. Check it out on #PyPI and #npm
18
11
133
76
12พัน
CheckPointSW's profile picture. You deserve the best security. Get the protection you need against AI-driven cyber attacks.
Check Point Software
@CheckPointSW
20 มี.ค. 2023

Is it possible to encounter #malware on #PyPI? Learn how CloudGuard Spectralops.io - A Check Point Solution detected a malicious package on the leading #Python repository: bit.ly/3Zgo5V7

CheckPointSW's tweet image. Is it possible to encounter #malware on #PyPI? Learn how CloudGuard Spectralops.io - A Check Point Solution detected a malicious package on the leading #Python repository: bit.ly/3Zgo5V7
0
13
2
0
970
ReversingLabs's profile picture. ReversingLabs is the trusted name in file and software security. RL - Trust Delivered.
ReversingLabs
@ReversingLabs
13 มี.ค.

⚠️🧵 RL researchers detected a new malicious campaign targeting #PyPI users. Several packages are pretending to be "time" related utilities, but are actually used to steal sensitive data like cloud tokens.

ReversingLabs's tweet image. ⚠️🧵 RL researchers detected a new malicious campaign targeting #PyPI users. Several packages are pretending to be "time" related utilities, but are actually used to steal sensitive data like cloud tokens.
1
18
44
13
8พัน
ggdaniel's profile picture. La ciberseguridad es una cosa jodida. Soy un freelance ayudando a empresas a que no se lleven sustos desagradables
cr0hn
 @ggdaniel
21 พ.ค. 2023

Pypi is having severe problems with malware and malicious projects 😞🤬 be careful #python #pypi

ggdaniel's tweet image. Pypi is having severe problems with malware and malicious projects 😞🤬 be careful #python #pypi
0
2
1
0
470
pypi's profile picture. The Python Package Index (PyPI) is the repository of software for the Python programming language. Pronounced 🥧 🫛 👁️
Python Package Index
 @pypi
14 ก.พ. 2024

Looking back at 2023 @mikefiedler discovered some impressive metrics that we want to share! @fastly #PyPI #pytho

pypi's tweet image. Looking back at 2023 @mikefiedler discovered some impressive metrics that we want to share! @fastly #PyPI #pytho
2
11
28
3
20พัน
socradar's profile picture. Your Eyes Beyond 👁 | Transform Your Risk Perspective
SOCRadar®
@socradar
1 ก.ย. 2023

🔍Recently, researchers identified three malicious #Python packages on the #PyPI, tied to #VMConnect campaign, and attributed it to the #LazarusGroup. 🔻Explore our #APT profile to gain insights into #Lazarus and learn about the campaign: 🔗socradar.io/apt-profile-wh…

socradar's tweet image. 🔍Recently, researchers identified three malicious #Python packages on the #PyPI, tied to #VMConnect campaign, and attributed it to the #LazarusGroup. 🔻Explore our #APT profile to gain insights into #Lazarus and learn about the campaign: 🔗socradar.io/apt-profile-wh…
0
0
3
0
516
ReversingLabs's profile picture. ReversingLabs is the trusted name in file and software security. RL - Trust Delivered.
ReversingLabs
@ReversingLabs
7 ก.ค.

⚠️🧵 RL threat researchers detected an impersonation attempt targeting a popular #PyPI cloudscraper package with more than 50M downloads. It has the suffix "safe" added, but it is all but safe: secure.software/pypi/packages/…

ReversingLabs's tweet image. ⚠️🧵 RL threat researchers detected an impersonation attempt targeting a popular #PyPI cloudscraper package with more than 50M downloads. It has the suffix "safe" added, but it is all but safe: secure.software/pypi/packages/…
1
3
7
2
779

Something went wrong.


Something went wrong.


United States Trends