PyPI

Software Supply Chain Under Attack: New Malware Infiltrates PyPI & npm with Advanced Tactics

3 min read

• Security

Software Supply Chain Under Attack: New Malware Infiltrates PyPI & npm with Advanced Tactics

Do Son June 17, 2025

Amid a surge in increasingly sophisticated software supply chain attacks, cybersecurity experts have identified a new wave...

Read More Read more about Software Supply Chain Under Attack: New Malware Infiltrates PyPI & npm with Advanced Tactics

Python Developers Beware: Malicious PyPI Packages Steal Social Media Data

2 min read

• Security

Python Developers Beware: Malicious PyPI Packages Steal Social Media Data

Do Son May 22, 2025

Threat actors continue to exploit popular open-source repositories as launchpads for the distribution of malicious code. This...

Read More Read more about Python Developers Beware: Malicious PyPI Packages Steal Social Media Data

Beware! Malicious Solana Tool on PyPI Stole Developer Data

2 min read

• Security

Beware! Malicious Solana Tool on PyPI Stole Developer Data

Do Son May 15, 2025

Threat actors uploaded a malicious package to the official PyPI repository, disguised as a legitimate tool for...

Read More Read more about Beware! Malicious Solana Tool on PyPI Stole Developer Data

Malicious ‘discordpydebug’ Package on PyPI Steals Data with RAT

2 min read

• Security

Malicious ‘discordpydebug’ Package on PyPI Steals Data with RAT

Do Son May 9, 2025

Researchers have uncovered a malicious package in the PyPI repository, masquerading as a utility for working with...

Read More Read more about Malicious ‘discordpydebug’ Package on PyPI Steals Data with RAT

Malicious Packages Found Destroying Data and Stealing Crypto Keys

2 min read

• Security

Malicious Packages Found Destroying Data and Stealing Crypto Keys

Do Son May 6, 2025

Three malicious components have been discovered within the Go programming module ecosystem, capable of triggering complete data...

Read More Read more about Malicious Packages Found Destroying Data and Stealing Crypto Keys

Malicious PyPI Package Steals Crypto Exchange Trading Orders

2 min read

• Security

Malicious PyPI Package Steals Crypto Exchange Trading Orders

Do Son April 18, 2025

Researchers at JFrog have uncovered a malicious package hosted on the official Python Package Index (PyPI). Its...

Read More Read more about Malicious PyPI Package Steals Crypto Exchange Trading Orders

PyPI Poisoned: 39K Downloads of Card-Stealing Python

2 min read

• Security

PyPI Poisoned: 39K Downloads of Card-Stealing Python

Do Son April 8, 2025

Malicious Python libraries have once again surfaced on the PyPI platform, engineered to steal confidential data and...

Read More Read more about PyPI Poisoned: 39K Downloads of Card-Stealing Python