Sunday, June 16, 2024

Python is Now World’s Most Used Coding Language By Hackers to Create Cyber Weapons

Python is known for its simplicity and flexibility, unlike other languages, Python becomes the most common vector for launching exploit attempts.

The Python programming language was discovered by Dutch computer scientist in 1989, the economist recently said that python to become a soon as a most used language around the globe.

Python Hacking Tool Nore Popular 

According to Imperva report more than 20% of GitHub repositories that implement an attack tool / exploit PoC are written in Python.

For web-based attacks, Python modules such as Urllib and Python requests are the most popular. Around 89% of attacks are based on the Python requests and 10.69% with Urllib and Urllib2 requests.

Unlike other clients, in Python, we see a host of different attack vectors and the usage of known exploits. Hackers, like developers, enjoy Python’s advantages which makes it a popular python hacking tool, reads Imperva report.

With Github under every security-related topic majority of the repositories written in Python, including popular tools such as w3af, Sqlmap, PDFMiner, and infamous AutoSploit tool.

According to Imperva analysis of their security incidents, more than 25% of the of the clients were from Python-based tools used by malicious actors, making it the most common vector for launching exploit attempts.

“When examining the use of Python in attacks against sites we protect, the result was unsurprising – a large chunk, up to 77%, of the sites were attacked by a Python-based tool, and in over a third of the cases a Python-based tool was responsible for the majority of daily attacks.”

Python used extensively in making a popular tool for implementing known exploits and python hacking tool, also it used to target specific applications and frameworks such as Struts, WordPress, Joomla, and Drupal.

“Imperva said that two most popular attacks in the last 2 months used CVE-2017-9841 – a PHP based Remote Code Execution (RCE) vulnerability in the PHPUnit framework, and CVE-2015-8562 which is an RCE against the Joomla! Framework.”

Since Python is so widely used by hackers, there is a host of different attack vectors to take into consideration. Python requires minimal coding skills, making it easy to write a script and exploit a vulnerability

Related Read

List of Top Ten Dark Web Activities That Alerts Organizations a Possible Breach by Hackers

Largest Dark Web Marketplace Black Hand Shut Down By Authorities

Hackers Selling Airport Security System Credentials on Dark Web for $10


Latest articles

Sleepy Pickle Exploit Let Attackers Exploit ML Models And Attack End-Users

Hackers are targeting, attacking, and exploiting ML models. They want to hack into these...

SolarWinds Serv-U Vulnerability Let Attackers Access sensitive files

SolarWinds released a security advisory for addressing a Directory Traversal vulnerability which allows a...

Smishing Triad Hackers Attacking Online Banking, E-Commerce AND Payment Systems Customers

Hackers often attack online banking platforms, e-commerce portals, and payment systems for illicit purposes.Resecurity...

Threat Actor Claiming Leak Of 5 Million Ecuador’s Citizen Database

A threat actor has claimed responsibility for leaking the personal data of 5 million...

Ascension Hack Caused By an Employee Who Downloaded a Malicious File

Ascension, a leading healthcare provider, has made significant strides in its investigation and recovery...

AWS Announced Malware Detection Tool For S3 Buckets

Amazon Web Services (AWS) has announced the general availability of Amazon GuardDuty Malware Protection...

Hackers Exploiting MS Office Editor Vulnerability to Deploy Keylogger

Researchers have identified a sophisticated cyberattack orchestrated by the notorious Kimsuky threat group.The...
Guru baran
Guru baran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Free Webinar

API Vulnerability Scanning

71% of the internet traffic comes from APIs so APIs have become soft targets for hackers.Securing APIs is a simple workflow provided you find API specific vulnerabilities and protect them.In the upcoming webinar, join Vivek Gopalan, VP of Products at Indusface as he takes you through the fundamentals of API vulnerability scanning..
Key takeaways include:

  • Scan API endpoints for OWASP API Top 10 vulnerabilities
  • Perform API penetration testing for business logic vulnerabilities
  • Prioritize the most critical vulnerabilities with AcuRisQ
  • Workflow automation for this entire process

Related Articles