Tag: Crytic-Compilers

Hackers Target Python Developers with Fake “Crytic-Compilers” Package on PyPI
News

Hackers Target Python Developers with Fake “Crytic-Compilers” Package on PyPI

A malicious Python package that was posted to the Python Package Index (PyPI) repository with the intention of delivering the information stealer Lumma (also known as LummaC2) has been found by cybersecurity researchers. The package in question is called crytic-compilers, which is a misspelling of the actual crytic-compile library. Before PyPI maintainers removed the fraudulent package, it had been downloaded 441 times. According to Sonatype security researcher Ax Sharma, "the counterfeit library is interesting in that it aligns its version numbers with the real library, in addition to being named after the legitimate Python utility, 'crytic-compile." The fake "crytic-compilers" version starts at 0.3.11 and ends there, giving the impression that this is a newer version of the com...