mac to Programming • 7 months agoSSH keys stolen by stream of malicious PyPI and npm packageswww.bleepingcomputer.comexternal-linkmessage-square10arrow-up1127arrow-down12
arrow-up1125arrow-down1external-linkSSH keys stolen by stream of malicious PyPI and npm packageswww.bleepingcomputer.commac to Programming • 7 months agomessage-square10
minus-squareblargererlinkfedilink21•7 months agoIts just a weird word choice for many/a group. If you read the article they are typo squatting legitimate packages with alternate versions that steal the ssh keys.
What’s a stream of packages?
Its just a weird word choice for many/a group. If you read the article they are typo squatting legitimate packages with alternate versions that steal the ssh keys.