ZiChatBot malware abuses Zulip APIs after hiding in PyPI packages

A newly documented malware campaign used fake Python packages on PyPI to deliver ZiChatBot, a cross-platform backdoor that targets Windows and Linux systems. The malware stands out because it uses Zulip’s public REST APIs as its command channel instead of relying on a traditional attacker-controlled server. Kaspersky researchers found that the malicious packages were uploaded […] The post ZiChatBot malware abuses Zulip APIs after hiding in PyPI packages appeared first on VPN Central.