Mac to [email protected] • 1 year agoSSH keys stolen by stream of malicious PyPI and npm packageswww.bleepingcomputer.comexternal-linkmessage-square10fedilinkarrow-up1122arrow-down12cross-posted to: [email protected][email protected]
arrow-up1120arrow-down1external-linkSSH keys stolen by stream of malicious PyPI and npm packageswww.bleepingcomputer.comMac to [email protected] • 1 year agomessage-square10fedilinkcross-posted to: [email protected][email protected]
minus-squareblargererlinkfedilink17•1 year agoIts just a weird word choice for many/a group. If you read the article they are typo squatting legitimate packages with alternate versions that steal the ssh keys.
What’s a stream of packages?
Its just a weird word choice for many/a group. If you read the article they are typo squatting legitimate packages with alternate versions that steal the ssh keys.