Hosted on MSN11mon
XZ Utils Hack: A Critical Alert for Open-Source Software Security
This event, known as the “XZ Utils Hack,” exposed a purposeful vulnerability that posed a serious risk to networked Linux machines around the world. The repercussions of the hack are extensive ...
Ethereum private key stealer on PyPI downloaded over 1,000 times
A malicious Python Package Index (PyPI) package named "set-utils" has been stealing Ethereum private keys through intercepted ...
Developer Tech11d
Python package ‘set-utils’ targets Ethereum wallets
A malicious package designed to steal private keys for Ethereum wallets has been uncovered within the Python Package Index ...
Hosted on MSN11mon
Latest Ubuntu beta and other Linux distros delayed by xz-utils security issues
The beta version of Ubuntu 24.04 won’t be released on time, the developers have confirmed, following concerns about a major security threat. Instead of launching on April 4, the latest Ubuntu ...
The Hacker News10d
This Malicious PyPI Package Stole Ethereum Private Keys via Polygon RPC Transactions
Malicious PyPI package set-utils steals Ethereum private keys, exfiltrating them via Polygon RPC to evade detection.