Cybersecurity researchers have uncovered as many as 11 malicious Python packages that have been cumulatively downloaded more than 41,000 times… Read More
The PyPI repository has removed a Python package called 'mitmproxy2' that was an identical copy of the official "mitmproxy" library,… Read More
A report from Sonatype revealed that supply chain attacks on open-source public repositories have increased up to 650% year-over-year. The… Read More
The researchers found six malicious payloads, all uploaded by a single user. The attacker designed them to run during a… Read More
As many as eight Python packages that were downloaded more than 30,000 times have been removed from the PyPI portal… Read More
The Python security team has fixed today three vulnerabilities impacting the Python Package Index (PyPI), including one that could have… Read More
The packages could be abused to execute remote code, amass system information, steal credit card information and passwords auto-saved in… Read More