Malicious Python libraries stealing OpenPGP and SSH keys:

zdnet.com/article/two-maliciou

– Look for python3-dateutil, and jeIlyfish.
– Both modules try to exfiltrate SSH/OpenPGP keys and send them to an IP address.
– This is the third time the PyPI team intervenes to remove typo-squatted malicious Python libraries from the official repository.

#python #malware #pypi #infosec #security #cybersecurity

@tek @b_cavello You should have come to the AI Inclusive thing tonight, B was on fire

@tek @b_cavello Oh hey it's the two fedverse people I have met in real life

@hafnia You would think so but Thor can be a sound sleeper, I don't think he minds

@tek Sign me up. I just met what I think might be the second real life person from Mastodon, it's pretty cool

@ycleptKyara Not sure I see where you need help, sounds like you have it covered

@denikombucha Kind of tough to say without knowing what kind of gear she already has, but maybe a spare battery? Hat? Dorky photo vest? Lanyard/clipboard/official looking credentials for sneaking in to games?

I have been sitting on this chomp.life registration page for like three days, trying to come up with a good username

so I randomly have an extra Steam key for Soulcaliber VI, if anyone wants it? just DM me.

no particular preference on who it goes to. will delete this when it's gone.

(deleted and redrafted bc I fucked up the numbering...)

Job Search Ad Basically, Boost!! Show more

selfie, eye contact Show more

I think if I had the superpower to suspend time for everyone but me I would just use it to workshop perfect punchlines that would appear to have come out of nowhere

selfie, eye contact Show more

Show more
Social @ PV

Social is the primary social media platform for the forth coming fourth version of Play Vicious, a new initiative built to bring attention to the plethora of creative acts that don't get the shine they deserve.
For more details about the project and how to support, go here.