{ads}

Malicious PyPI Package Masquerades as Chimera Module to Steal AWS, CI/CD, and macOS Data

Written By Monday, 16 June 2025 Add Comment



June 16, 2025 at 12:15PM

Cybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) repository that's capable of harvesting sensitive developer-related information, such as credentials, configuration data, and environment variables, among others. The package, named chimera-sandbox-extensions, attracted 143 downloads and likely targets users of a service called Chimera Sandbox,

from The Hacker News https://ift.tt/SxHgMqY

0 Response to "Malicious PyPI Package Masquerades as Chimera Module to Steal AWS, CI/CD, and macOS Data"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads