Blog

Infostealer research, breaches, and analysis

Long-form investigations from the Hudson Rock research team. Filter by topic to narrow down.

3 articles · Python Page 1 of 1

PyPI halts new projects, users for 10 hours due to infostealer influx

A few hours ago, The Python Package Index (PyPi) suspended new project creation and new user registration to mitigate an ongoing malware upload campaign. The research…

Mar 30, 2024 8 min read

Infostealers

Info Stealing Packages Hidden in PyPI

Affected platforms: All platforms where PyPI packages can be installedImpacted parties: Any individuals or institutions that have these malicious packages installedImpact: Leak of credentials, sensitive information,…

Jan 29, 2024 10 min read

FBot

Exploring FBot | Python-Based Malware Targeting Cloud and Payment Services

Executive Summary FBot is a Python-based hacking tool distinct from other cloud malware families, targeting web servers, cloud services, and SaaS platforms like AWS, Office365, PayPal,…

Jan 12, 2024 8 min read