WSB-TV

Have you received a random package you didn’t order? It could all be part of a scam to defraud you

ATLANTA — If you‘ve recently received a random item that you didn’t order, it could be part of a scheme called brushing. Fraudsters use it to brush up or boost a product review by creating fake orders ...
WJHL-TV

Man charged with ID theft after random packages delivered to homes

Johnson City Police have charged a man with identity theft after an investigation revealed he was sending packages to random addresses in Johnson City. Investigators said Samuel Yoakumah, 21, had ...
ZDNet

Open-source security: It's too easy to upload 'devastating' malicious packages, warns Google

Google has detailed some of the work done to find malicious code packages that have been sneaked into bigger open-source software projects. The Package Analysis Project is one of the software supply ...
Dark Reading

One-Third of Popular PyPI Packages Mistakenly Flagged as Malicious

The scanners tasked with weeding out malicious contributions to packages distributed via the popular open source code repository Python Package Index (PyPI) create a significant number of false alerts ...
Dark Reading

Malicious Open Source Packages Spike 188% YoY

Due to automation and a high-reward, low-risk threat environment, open source malware increased 188% year over year in the second quarter of this year. Supply-chain security vendor Sonatype today ...