Malicious Python Packages Deliver PondRAT Backdoor: North Korean Group Targets Developers
Unit 42 researchers have recently uncovered an ongoing campaign where the North Korea-linked APT group, Gleaming Pisces (also known as Citrine Sleet), is distributing the new PondRAT backdoor through infected Python packages. This brilliant campaign poses a significant threat, as the attackers are infecting packages in the Python Package Index (PyPI) repository, and use it to spread across supply…
TechSplicer Blog – Read More