Malware Upload Attack Hits PyPI Repository
March 28, 2024 at 02:24PM The Python Package Index (PyPI) had to suspend new project creation and user registration to counter a malware upload campaign. Security researchers discovered malicious Python packages using typo-squatting to push multi-stage attacks to steal sensitive data and crypto wallets. The incident underscores the ongoing cybersecurity threats to software development ecosystems. … Read more