Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Python Programming Security

Python is a Hit With Hackers, Report Finds (zdnet.com) 72

After breaking into the top three most popular programming languages for the first time this month, behind C and Java, Python has also won the hearts of hackers and web nasties, according to attack statistics published this week by web security biz Imperva. From a report: The company says more than a third of daily attacks against sites the company protects come from a malicious or legitimate tool coded in Python. Imperva says that around 77 percent of all the sites the company protects, have been attacked by at least one Python-based tool. Furthermore, when the company looked at the list of tools that hackers used for their attacks, more than a quarter were coded in Python, by far the attackers' favorite tool. "Hackers, like developers, enjoy Python's advantages which makes it a popular hacking tool," the Imperva team says.
This discussion has been archived. No new comments can be posted.

Python is a Hit With Hackers, Report Finds

Comments Filter:
  • by Anonymous Coward

    Obviously, Python needs to update their Code of Conduct to exclude the web nasties from using the language to create tools to attack systems.

  • or simply popularity?

    • Re: (Score:3, Insightful)

      by Narcocide ( 102829 )

      Yea that's sortof my take on this, too. It's got a lot less to do with Python's practical usefulness and a lot more to do with how trends get set in script kiddie communities.

      • He's talking about scraping apparently. These aren't real attacks IMHO. If someone is after my data I would actually prefer that they use Python because at least it will take a while.
    • Ecosystem.

    • It's hot now but so was Perl in the 1990s.

    • And a large collection of solid libraries.
      Language written to be easy to code and read.
      Low barrier to begin a program.
      Cross platform.
      Support is easy to get.

  • Python: The tool to use when you want to get things done fast.

    • Re:Why Python? (Score:4, Interesting)

      by JoeyRox ( 2711699 ) on Friday September 28, 2018 @03:24PM (#57391964)
      Python is definitely the language to use when you want to get the tool developed fast, but not the best if that tool needs to run fast.
      • Python isn’t a slacker in performance. You do need to know how it handles stuff. Such as if you are appending a string you do
        Stuff += otherstuff vs Stuff = Stuff + otherstuff
        Plus there is a big supply of well made libaries. Which may be hard for you code as well (I know, I know you are the best coder in the world, Baratte us with you exploits where you fixed some guys code who was supposed to be the expert or did a fix to the system in record time. Or how you aced some coding competition... )

    • Python: The tool to use when you want to get things done fast.

      Write fast, not necessarily read fast. Perl had a reputation for being quick and short to write code with, but such code had very questionable readability by somebody besides the author.

      Remember, roughly 2/3 of software cost is maintenance, not original writing. I'm not claiming Python has a problem in this area, only saying that quick/short writing of code is only part of a real-world score.

  • ... the devil, the fundamentalists, the commies, the language of terrorists! /irony

    USA nonsense all over the place...
  • Thing is used for evil -> better ban said thing.
  • by Anonymous Coward

    Unless they deliver the Python runtime along with it (which no longer makes it "just a Python script"), any Python-based malware won't do shit on anyone's machine except for servers and web developer boxes where the runtime is already there.

    Have I missed something?

  • Metasploit is the biggest one AFAIK and it's Ruby not Python.
  • You know, in my extensive research, Ive found indications that HACKERS HATE COBOL, you would be really hard pressed to find a COBOL rootkit attached to an email. I think we should all switch over!

  • I may be showing my ignorance here, but unless on the target system some python thing is being exploited, how do you know what the crackers will use? I'm not aware that calling cards are left after a system has been compromised. Sockets, file reads, etc. all look the same if they're done by a python script or a compiled program.
    • by CODiNE ( 27417 )

      You'll mostly be able to tell with HTTP requests, the user agent header will have a default python.requests or whatever library they're using for their script. Some guys will take the time to put in a fake browser user agent, but generally you see their Python library version. If you're in a SOC you can just watch for python in the user agent and 99% of the time it'll be malicious traffic.

  • I imagine Python is also a hit with people trying to do useful things as well, particularly things involving Raspberry Pi and automation - it's been taught in schools for the last few years as well. Nice try educators though, trying to make coding more 'cool' by writing this article!

Keep up the good work! But please don't ask me to help.

Working...