Phylum (Page 2)

Sophisticated RAT Targeting Gulp Projects on npm

Research

On May 24, 2024, Phylum’s automated risk detection platform alerted us to a suspicious publication on npm. The package in question is called glup-debugger-log and was published with two obfuscated files that worked together; one

Phylum Research Team May 31, 2024 9 min read

Subscribe to our research

Keep up with the latest software supply chain attacks

Compiled Python Files

Learn how compiled Python modules can be included in packages to obfuscate intent and deliver a malicious payload....

Charles Coggins May 16, 2024 6 min read

Python Executable Hooks

Python customization modules in user or global site-packages directories can carry malicious code that runs every time the Python interpreter does....

Charles Coggins May 13, 2024 4 min read

Malicious Go Binary Delivered via Steganography in PyPI

On May 10, 2024, Phylum’s automated risk detection platform alerted us to a suspicious publication on PyPI. The package was called requests-darwin-lite and appeared...

Phylum Research Team May 10, 2024 5 min read

Adding Spurious Wheels to PyPI

Learn how easy it is for threat actors to hide their malware in Python wheel artifacts hosted on the PyPI registry....

Charles Coggins May 10, 2024 4 min read