{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreigmxv3zjez7vx73kbeg7pso7u3yr5kosupqd34uytgzavned5vize",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3mljtoov757l2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreibjj5zez3gtau46ggbxdclux7ynmwjo22cs7b2zi2ujk4tlbzvc5e"
    },
    "mimeType": "image/webp",
    "size": 20600
  },
  "path": "/zichatbot-malware-abuses-zulip-apis-after-hiding-in-pypi-packages/",
  "publishedAt": "2026-05-10T09:05:56.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "ZiChatBot malware abuses Zulip APIs after hiding in PyPI packages",
    "VPN Central"
  ],
  "textContent": "A newly documented malware campaign used fake Python packages on PyPI to deliver ZiChatBot, a cross-platform backdoor that targets Windows and Linux systems. The malware stands out because it uses Zulip’s public REST APIs as its command channel instead of relying on a traditional attacker-controlled server. Kaspersky researchers found that the malicious packages were uploaded […]\n\nThe post ZiChatBot malware abuses Zulip APIs after hiding in PyPI packages appeared first on VPN Central.",
  "title": "ZiChatBot malware abuses Zulip APIs after hiding in PyPI packages"
}