Friday, October 4, 2024
HomePythonPython is Now World's Most Used Coding Language By Hackers to Create...

Python is Now World’s Most Used Coding Language By Hackers to Create Cyber Weapons

Published on

Python is known for its simplicity and flexibility, unlike other languages, Python becomes the most common vector for launching exploit attempts.

The Python programming language was discovered by Dutch computer scientist in 1989, the economist recently said that python to become a soon as a most used language around the globe.

Python Hacking Tool Nore Popular 

According to Imperva report more than 20% of GitHub repositories that implement an attack tool / exploit PoC are written in Python.

- Advertisement - EHA

For web-based attacks, Python modules such as Urllib and Python requests are the most popular. Around 89% of attacks are based on the Python requests and 10.69% with Urllib and Urllib2 requests.

Unlike other clients, in Python, we see a host of different attack vectors and the usage of known exploits. Hackers, like developers, enjoy Python’s advantages which makes it a popular python hacking tool, reads Imperva report.

With Github under every security-related topic majority of the repositories written in Python, including popular tools such as w3af, Sqlmap, PDFMiner, and infamous AutoSploit tool.

According to Imperva analysis of their security incidents, more than 25% of the of the clients were from Python-based tools used by malicious actors, making it the most common vector for launching exploit attempts.

“When examining the use of Python in attacks against sites we protect, the result was unsurprising – a large chunk, up to 77%, of the sites were attacked by a Python-based tool, and in over a third of the cases a Python-based tool was responsible for the majority of daily attacks.”

Python used extensively in making a popular tool for implementing known exploits and python hacking tool, also it used to target specific applications and frameworks such as Struts, WordPress, Joomla, and Drupal.

“Imperva said that two most popular attacks in the last 2 months used CVE-2017-9841 – a PHP based Remote Code Execution (RCE) vulnerability in the PHPUnit framework, and CVE-2015-8562 which is an RCE against the Joomla! Framework.”

Since Python is so widely used by hackers, there is a host of different attack vectors to take into consideration. Python requires minimal coding skills, making it easy to write a script and exploit a vulnerability

Related Read

List of Top Ten Dark Web Activities That Alerts Organizations a Possible Breach by Hackers

Largest Dark Web Marketplace Black Hand Shut Down By Authorities

Hackers Selling Airport Security System Credentials on Dark Web for $10

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Prince Ransomware Hits UK and US via Royal Mail Phishing Scam

A new ransomware campaign targeting individuals and organizations in the UK and the US...

Microsoft, DOJ Dismantle Domains Used by Russian FSB-Linked Hacking Group

Microsoft and the U.S. Department of Justice (DOJ) have successfully dismantled a network of...

Cloud Penetration Testing Checklist – 2024

Cloud Penetration Testing is a method of actively checking and examining the Cloud system...

Linux Malware perfctl Attacking Millions of Linux Servers

Researchers have uncovered a sophisticated Linux malware, dubbed "perfctl," actively targeting millions of Linux...

Free Webinar

Decoding Compliance | What CISOs Need to Know

Non-compliance can result in substantial financial penalties, with average fines reaching up to $4.5 million for GDPR breaches alone.

Join us for an insightful panel discussion with Chandan Pani, CISO - LTIMindtree and Ashish Tandon, Founder & CEO – Indusface, as we explore the multifaceted role of compliance in securing modern enterprises.

Discussion points

The Role of Compliance
The Alphabet Soup of Compliance
Compliance
SaaS and Compliance
Indusface's Approach to Compliance

More like this

Beware Of Malicious Python Packages That Steal Users Sensitive Data

Malicious Python packages uploaded by "dsfsdfds" to PyPI infiltrated user systems by exfiltrating sensitive...

Python Developers Beware! Russian Hackers Targeting You With Malicious Packages

A malicious Python package named "crytic-compilers" was identified on PyPI.Masquerading as a legitimate...

Malicious PyPI & NPM Packages Attacking MacOS Users

Cybersecurity researchers have identified a series of malicious software packages targeting MacOS users.These...