In this episode of Phoenix Cast, hosts John and Kyle talk through PyPI announcing they were rolling out 2FA for critical repos and some of the fallout as a result of this decision.
Share your thoughts with us on Twitter: @USMC_TFPhoenix (Now verified!) Follow MARFORCYBER & MCCOG on Twitter, LinkedIn, Facebook, and YouTube. Leave your review on Apple Podcasts.
Links:
Snark: https://www.merriam-webster.com/dictionary/snark
PyPI article: https://www.bleepingcomputer.com/news/security/pypi-mandates-2fa-for-critical-projects-developer-pushes-back/?fbclid=IwAR1miz9zGORelshF19IwWZ_GdGClAMCOdvXlDBfXiVwVzWKuHYcwZCkHKPE&fs=e&s=cl
Ethical hacking gone wrong: https://www.bleepingcomputer.com/news/security/hacker-says-hijacking-libraries-stealing-aws-keys-was-ethical-research/