
Blog Series
PyPI

PyPI Malicious Packages with Thousands...
For the past six months, an unidentified threat actor has been slipping malicious packages into the Python Package Index (PyPI), a repository for Python software. The aim? To unleash malware...
Unveiling BlazeStealer Malware Python Packages...
In a recent revelation, a cluster of malicious Python packages has infiltrated the Python Package Index (PyPI), posing a significant threat to developers’ systems by aiming to pilfer sensitive information....
Malicious PyPI package installs Crytominer...
A malicious PyPI package identified as secretslib is used by Monero cryptominer on Linux systems. The malicious package activity was uncovered by security researchers at Sonatype. Although secretslib describes itself...