News

Misspelled a site's name? Cybercriminals are exploiting this to infect your computer with malware - here's how to stay safe
New malware campaign uses typo-squatting and fake developer packages to spread threats across Windows and Linux.
CoinTelegraph7mon
Crypto-stealing malware discovered in Python Package Index — Checkmarx
An earlier example of malicious software packages was uploaded to the Python ... from images and was primarily spread through text message links, which prompted unsuspecting users to download ...
Bleeping Computer3y
Malicious PyPI packages with over 10,000 downloads taken down
These malicious packages are estimated to have generated over 10,000 downloads and mirrors put together, according to the researchers' report. Large scale static analysis led to a malicious discovery ...
TechRadar5mon
Popular Python AI library hacked to deliver malware
As an open source solution, YOLO11 was also available for download on PyPI, one of the world’s biggest Python package repositories. There, an unidentified threat actor recently broke into the ...
Ars Technica2y
10 malicious Python packages exposed in latest repository attack
the official and most popular repository for Python programs and code libraries. Those duped by the seemingly familiar packages could be subject to malware downloads or theft of user credentials ...
Bleeping Computer6mon
Malicious PyPI package with 37,000 downloads steals AWS keys
A malicious Python ... the package has been downloaded more than 37,000 times and executes platform-specific scripts for Windows and Linux. The large number of downloads is accounted by fabrice ...