M'kabukhu ka PyPI (Python Package Index), mapaketi angapo adziwika omwe amaphatikiza ma code obisika a cryptocurrency mining. Mavuto analipo m'maphukusi a maratlib, maratlib1, matplatlib-plus, mllearnlib, mplatlib ndi learninglib, mayina omwe anasankhidwa kuti afanane ndi kalembedwe ku malaibulale otchuka (matplotlib) ndikuyembekeza kuti wogwiritsa ntchito angalakwitse polemba komanso osazindikira kusiyana (typesquatting). Maphukusiwo adatumizidwa mu Epulo pansi pa akaunti ya nedog123 ndipo adatsitsidwa nthawi pafupifupi 5 pamiyezi iwiri yonse.
Khodi yoyipa idayikidwa mu laibulale ya maratlib, yomwe idagwiritsidwa ntchito m'maphukusi ena mwanjira yodalira. Khodi yoyipayo idabisidwa pogwiritsa ntchito njira yodziwikiratu, yosazindikirika ndi zida wamba, ndipo idachitidwa polemba setup.py build script yomwe idachitika pakuyika phukusi. Kuchokera ku setup.py, idatsitsidwa kuchokera ku GitHub ndipo bash script aza.sh idakhazikitsidwa, yomwe idatsitsidwa ndikuyambitsa Ubqminer kapena T-Rex cryptocurrency mining applications.
Source: opennet.ru