Malicious software packages found in Pythons official repository

by: Marcel-Jan, 7 years ago

Last edited: 7 years ago

Something to watch out for:
http://www.nbu.gov.sk/skcsirt-sa-20170909-pypi/

"SK-CSIRT identified malicious software libraries in the official Python package
repository, PyPI, posing as well known libraries. A prominent example is a fake
package urllib-1.21.1.tar.gz, based upon a well known package
urllib3-1.21.1.tar.gz."


You must be logged in to post. Please login or register an account.



Oh s---

-cord 7 years ago
Last edited 7 years ago

You must be logged in to post. Please login or register an account.

The good news: the packages don't work in Python 3. (Just noticed that)

-Marcel-Jan 7 years ago

You must be logged in to post. Please login or register an account.


Oh, really? Why is this the case?

-Harrison 7 years ago

You must be logged in to post. Please login or register an account.


Because the infected libraries are Python 2 only apparently. The article says: "The coding style of the added code snipplet (see Appendix A) makes it incompatible with Python 3.x. Troubles installing the packages on Python 3.x were reported on the Internet multiple times, but to our knowledge, never identified as a security incident."

-Marcel-Jan 7 years ago
Last edited 7 years ago

You must be logged in to post. Please login or register an account.


Oh thank god I don't use python 2

-cord 7 years ago

You must be logged in to post. Please login or register an account.