Junior Security Researcher, Kaspersky
Leonid joined Kaspersky in 2020 as an intern in the Global Research and Analysis Team (GreAT). In 2021, he was invited to GReAT as a Junior Security Researcher. As part of his role, Leonid is engaged in open‑source security, reverse engineering, and malware analysis. He is actively involved in the development of internal tools and infrastructure.
Leonid is currently enrolled in Lomonosov Moscow State University at the Faculty of Computational Mathematics and Cybernetics. He is also a member of the PASECA CTF team.
Building software on top of open‑source libraries and packages has become the norm. Modern languages and frameworks, like Python, Node.js, Go, Rust encourage developers to just “download and execute” whatever is offered by third‑party repositories without thinking much about the consequences.
The latest incidents with packages like node‑ipc, CTX show that these consequences may be quite severe, and these are just the cases we know about.
This talk will describe an automated system that the researchers built for monitoring and searching for malicious changes in npm, PyPi, and Crates packages, the challenges they faced and their solutions. The speakers will present the current results and the most interesting discoveries detected in the repositories.