69
Malicious PyPI Package "automslc" Enables 104K+ Unauthorized Deezer Music Downloads
(thehackernews.com)
this post was submitted on 02 Mar 2025
69 points (97.3% liked)
Technology
72909 readers
3087 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related news or articles.
- Be excellent to each other!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
- Check for duplicates before posting, duplicates may be removed
- Accounts 7 days and younger will have their posts automatically removed.
Approved Bots
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
What part of it is malicious? From what I understood, it is a illegal music downloading platform, and they say it opens its users to "legal action".
Are we calling pirating-enabling software malicious now? Because pirating is ilegal?
I assume the malicious part is that it phones home without permission, likely tracking users without their consent or informing them.
This whole article reads like its statistically generated:
Which is the number used in the headline, but the headline says that's the number of tracks downloaded, not the number of times the library has.