News

More malicious Python packages are on the loose, experts warn
Security researchers found two packages on PyPI, showing malicious intent The packages ... “The Zebo-0.1.0 script is a ...
Computing2y
Malicious 'typosquat' Python packages with ransomware scripts discovered
Researchers at software supply chain management firm Sonatype have identified many malicious Python packages with ransomware scripts. In a blog post detailing their findings, Sonatype researcher ...
Computing10mon
Malicious Python packages found exfiltrating user data to Telegram bot
This is far from the first time that malicious packages have been found on PyPI, which is a popular target for supply chain attacks, given the widespread use of Python. In March, North Korean ...
TechRadar16d
Gmail servers hijacked by malicious PyPI packages to spread havoc - here's how to stay safe
reported them to the Python repository and thus helped get them removed from the platform - however the damage has already been done. According to Socket, there were seven malicious PyPI packages ...