Threat Advisories:
🎧 Hive Force Labs: Critical Threats Affecting You This Week - 5 Minute Audio Intelligence Report
👥 Play Count: Loading...

PondRAT Malware Hidden in Python Packages Targets Developers

Red | Attack Report
Download PDF

PondRAT malware, linked to North Korean hackers, was found hidden in Python packages on PyPI, targeting software developers. It allows remote access to infected machines, posing a serious threat to supply chains by compromising development environments. The malware’s similarities to the Gleaming Pisces (aka Lazarus Group) tools highlight increasing risks in the open-source ecosystem. Though the infected packages were removed, the attack underscores the need for stronger security practices in managing third-party code.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox

Cybersecurity Leaders Dinner at Houston

CTEM for CISOs in 2025, brought to life by Al Lindseth.

Tuesday, October 7th, 2025
6.00 pm to 9.00 pm
Del FRISCOS Double Eagle Steakhouse, Houston TX