Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Malicious Packages on npm, PyPI, and RubyGems Weaponize OAST Techniques for Data Exfiltration and Recon
Malware and Vulnerabilities
January 06, 2025
Socket
Over the last year, researchers at Socket observed and identified malicious packages leveraging Out-of-Band Application Security Testing (OAST) services such as oastify[.]com and oast[.]fun to exfiltrate sensitive data to attacker-controlled servers.
Read More
Malicious PyPI packages
PyPI
Npm
malicious RubyGems packages
RubyGems
Publisher
Previous
Karmada Vulnerability Grants Attackers Control of Kuber ...
Malware and Vulnerabilities
Next
GoCD Patches Critical Vulnerability Allowing User Privi ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/1384_shutterstock_2076516847.jpeg)
/https://cyware-ent.s3.amazonaws.com/image_bank/12e7_shutterstock_1119128840.jpg)
