PyPI is going to enforce two-factor authentication (2FA) for all project maintainers by the end of this year over security…
The Python Package Index (PyPI) maintainers have temporarily disabled the sign up and package upload processes due to an ongoing…
Researchers discovered a malicious package on PyPI that uses Unicode to evade detection while stealing sensitive data. Supply chain security…
Experts discovered a fully featured information stealer, tracked as 'Colour-Blind' in the Python Package Index (PyPI). Researchers from Kroll's Cyber…
Researchers discovered three malicious packages that have been uploaded to the Python Package Index (PyPI) repository by Lolip0p group. FortiGuard…
Researchers spotted a malicious package in the Python Package Index (PyPI) repository that impersonates a software development kit (SDK) for…
Experts discovered a malicious package on the Python Package Index (PyPI) that uses steganographic to hide malware within image files.…
Cybersecurity researchers discovered 29 malicious PyPI packages delivering the W4SP stealer to developers' systems. Cybersecurity researchers have discovered 29 packages…
The Python Package Index (PyPI) warns of an ongoing phishing campaign to steal developer credentials and distribute malicious updates. The…
10 packages have been removed from the Python Package Index (PyPI) because they were found harvesting data. Check Point researchers…
This website uses cookies.