Python Package Repository Struggles to Deal with Typosquatting

19 September 2017

Ten rogue packages with misspelled names intentionally chosen to trick users have recently been found on the Python Package Index (PyPI), the main repository for community-contributed Python components. This is the latest in a string of typosquatting attacks discovered on open-source software repositories over the past few years.

Read full news article on The New Stack

Date:

19 September 2017

Categorie(s):

NEWS

Tag(s):

Analysis, Deals, North America, Open Source, Open Source Software, Packages, Pip, Repository, Top Stories

TensorFlow AI models at risk due to Keras API flaw23 April 2024
Hackers infect users of antivirus service that delivered updates over HTTP23 April 2024
Top 5 Cybersecurity Threats That eCommerce Websites Should Watch Out For23 April 2024
Google ad for Facebook redirects to scam23 April 2024
Robofly, CRUSHFTP, Github, Palo Alto, MITRE, Fancy Bear, Deepfakes, Aaran Leyland… – SWN #38023 April 2024