A new supply chain attack called Hades has compromised 19 packages in the Python Package Index (PyPI) registry, deploying 37 malicious wheel artifacts designed to automatically execute credential-stealing malware. This attack represents an evolution of the Miasma campaign, using *-setup.pth files for automatic execution and demonstrating increasingly sophisticated targeting of specific development
The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel artifacts across 19 packages in the Python Package Index (PyPI) registry, as the Mini Shai-Hulud-style attacks continue to be refined and splintered to target specific ecosystems. "The compromised releases shipped a *-setup.pth file that attempts to execute automatically
Originally published at thehackernews.com
60-minute technical evaluation, no obligation. We'll map the ideas in this article to your environment.
