XWorm, a multi-functional malware tool discovered in 2022, allows attackers to steal sensitive data, remotely access systems, and deploy other malware, whose versatility has made it a popular choice for threat actors like NullBulge and TA558. WSF downloader fetches a malicious PowerShell script that injects a DLL into a legitimate process for XWorm execution via … Continue reading PyPI Under Attack: Discovery of Malicious Crypto-Stealing Packages