Researchers Discover Malicious PyPI Package Posing as SentinelOne SDK to Steal Data

19-Dec-22

A new malicious package impersonating a software development kit (SDK) for SentinelOne, a significant cybersecurity firm, has been found on the Python Package Index (PyPI) repository as part of a campaign called SentinelSneak, according to cybersecurity researchers.

According to reports, the package, called SentinelOne, was published between December 8 and December 11 of 2022, with roughly two dozen versions being put out in quick succession over the course of two days. It has since been taken down.

Read More…