Скачать или смотреть Beware of Malicious Python Package Impersonating Legitimate Ones on PyPI

https://cyberstanc.com/blog/pypi-masq...

The recent incident serves as a stark reminder of the persistent danger of typosquatting, a fraudulent technique where cybercriminals register domain names or create software packages with names that closely resemble prominent brands or technologies. The perpetrators behind this scheme aim to mislead unsuspecting users, particularly developers who may be typing rapidly or not paying close attention to the names of the packages they are installing. In this specific case, the typosquats of the popular packages "https" and "tkinter" were likely created to deceive such users.

The fact that these deceptive packages were downloaded hundreds of times before being taken down underscores the pressing need for stronger security measures in the package distribution process. Despite some security controls in place on PyPI, the incident highlights the necessity of sustained attention and ongoing enhancements to safeguard the integrity of the software supply chain. As such, the incident stands as a call to action for developers and security professionals to remain vigilant against potential threats and work collaboratively towards building a more secure and trustworthy software ecosystem.
We are graduated from Mach37 (https://www.mach37.com/) cybersecurity cohort program and malware engine integration with Polyswarm & OPSWAT, 25+ threat alliance collaboration with OEMs partners. We have recently participtate in MRG Effitas 360 ransomware test and recently we have been nominated for Data security Council of India for "The Most Innovative Product of the year 2021".