Mac@programming.dev to Programming@programming.dev · 11 months agoSSH keys stolen by stream of malicious PyPI and npm packageswww.bleepingcomputer.comexternal-linkmessage-square10fedilinkarrow-up1126arrow-down12cross-posted to: linux_lugcast@lemux.minnix.devhackernews@derp.foo
arrow-up1124arrow-down1external-linkSSH keys stolen by stream of malicious PyPI and npm packageswww.bleepingcomputer.comMac@programming.dev to Programming@programming.dev · 11 months agomessage-square10fedilinkcross-posted to: linux_lugcast@lemux.minnix.devhackernews@derp.foo
minus-squareblargerer@kbin.sociallinkfedilinkarrow-up21·11 months agoIts just a weird word choice for many/a group. If you read the article they are typo squatting legitimate packages with alternate versions that steal the ssh keys.
What’s a stream of packages?
Its just a weird word choice for many/a group. If you read the article they are typo squatting legitimate packages with alternate versions that steal the ssh keys.