Intel Name: Gleaming pisces poisoned python packages campaign delivers pondrat linux and macos backdoors
Date of Scan: September 19, 2024
Impact: Medium
Summary: The “Gleaming Pisces Poisoned Python Packages” campaign involves attackers distributing malicious Python packages that deliver a backdoor called PondRAT to Linux and macOS systems. These packages are designed to look legitimate, tricking users into downloading them. Once installed, PondRAT allows attackers to remotely control the infected systems, compromising security and potentially stealing sensitive information. This highlights the importance of verifying software sources and being cautious with package installations.