Technology

PyPI Packets ByPass Firewall Using Cloudflare Tunnel

Six packages were found in the official repository for open-source Python projects that steal information and forward it to hackers. In addition, the attackers are given remote access. Cloudflare tunnels are used to bypass firewall restrictions.

According to Bleeping Computer, these are the six PyPI packages “pyrologin”, “easytimestamp”, “discorder”, “discord-dev”, “style.py” and “pythonstyles”. Although the packages have only recorded 83 to 228 downloads so far, the administrators of affected systems should uninstall the programs as soon as possible. The first extensions with malicious code of the current wave are said to have appeared on December 22nd and were discovered by Phylum. All projects have now been blocked.

The stolen data includes cryptocurrency wallets, browser cookies, passwords, Telegram information, as well as Discord tokens. The information is sent to an attacker’s server. A Cloudflare tunnel is also installed on the computer. With it, the hackers can access the PC without the connection being rejected by a firewall. The Trojan offers the option to run console commands on the compromised device as well as broadcast the desktop.

PyPI requires 2FA for critical projects

Of course, removing the corresponding packages does not prevent further programs with malicious code from being added in the future. PyPI has struggled with malicious content in the past. In the middle of last year, a few packages appeared that steal and forward users’ AWS keys. The administrators then introduced two-factor authentication for critical projects with a large number of downloads, which was not welcomed by all developers, however.

Share
Published by
Yasir Zeb
Tags: PYPIpython

Recent Posts

Crash in the smartphone market: lowest sales figures in 13 years

The global smartphone market is experiencing a severe downturn, recording its worst quarter in 13…

8 hours ago

Pixel 11: Mega leak shows images and data from the new Google smartphones

Amazon made a big mistake and revealed the entire lineup of the Google Pixel 11…

8 hours ago

Top 10 Payment Card Tools for Everyday Digital Finance

A payment card is easiest to understand when users see how it fits into real…

14 hours ago

OnePlus is ‘dead’: Oppo wants to soon announce its withdrawal from the EU & USA

OnePlus will soon be history. At least in Europe and the USA. What has been…

14 hours ago

Switch 2 OLED: Nintendo is apparently planning a display upgrade after all

Nintendo is reportedly still internally planning an OLED version of the Switch 2 for the…

14 hours ago

Maps: Google launches major visual update with immersive navigation

Google appears to be starting to distribute the new immersive navigation for Google Maps. The…

14 hours ago