Typosquatting is an attack where attackers upload a similar looking package to a popular package (e.g., request, urllib3), often embedded with malicous code.

Typosquatting is an attack where attackers upload a similar looking package of a popular package (e.g., request, urllib3) to the package repository, often embedded with malicious code.

Early this month, Michael Salsone (@0xPopsiclestick) spotted a malicious package called request. The package looks similar to the popular package requests (https://pypi.org/project/requests/) with more than 40K stars in Github.

The number of downloads (victims) of the malicious package was significant as indicated by the following tweet.

I wanted…

ly vu

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store